Vulnerabilities > CVE-2021-30677 - Unspecified vulnerability in Apple products
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
This issue was addressed with improved environment sanitization. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, macOS Big Sur 11.4, watchOS 7.5. A malicious application may be able to break out of its sandbox.
Vulnerable Configurations
References
- https://support.apple.com/en-us/HT212528
- https://support.apple.com/en-us/HT212528
- https://support.apple.com/en-us/HT212529
- https://support.apple.com/en-us/HT212529
- https://support.apple.com/en-us/HT212532
- https://support.apple.com/en-us/HT212532
- https://support.apple.com/en-us/HT212533
- https://support.apple.com/en-us/HT212533
- https://support.apple.com/en-us/HT212600
- https://support.apple.com/en-us/HT212600
- https://support.apple.com/en-us/HT212603
- https://support.apple.com/en-us/HT212603
- https://support.apple.com/kb/HT212602
- https://support.apple.com/kb/HT212602