Show filters
227 Total Results
Displaying 1-10 of 227
Sort by:
Attacker Value
Unknown

CVE-2021-1779

Disclosure Date: April 02, 2021 (last updated November 28, 2024)
A logic error in kext loading was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave. An application may be able to execute arbitrary code with system privileges.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
1
0
Attacker Value
Unknown

CVE-2021-1785

Disclosure Date: April 02, 2021 (last updated November 28, 2024)
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to arbitrary code execution.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
1
0
Attacker Value
Unknown

CVE-2021-1782

Disclosure Date: April 02, 2021 (last updated February 09, 2024)
A race condition was addressed with improved locking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited..
Attack Vector: LocalPrivileges: LowUser Interaction: None
1
0
Attacker Value
Unknown

CVE-2021-1789

Disclosure Date: April 02, 2021 (last updated November 08, 2023)
A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4, Safari 14.0.3. Processing maliciously crafted web content may lead to arbitrary code execution.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
1
0
Attacker Value
Unknown

CVE-2020-3896

Disclosure Date: December 23, 2021 (last updated October 07, 2023)
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious application may be able to overwrite arbitrary files.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2020-3886

Disclosure Date: December 23, 2021 (last updated October 07, 2023)
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious application may be able to execute arbitrary code with kernel privileges.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2021-30811

Disclosure Date: October 19, 2021 (last updated November 28, 2024)
This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8. A local attacker may be able to read sensitive information.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-30677

Disclosure Date: September 08, 2021 (last updated November 28, 2024)
This issue was addressed with improved environment sanitization. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, macOS Big Sur 11.4, watchOS 7.5. A malicious application may be able to break out of its sandbox.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-30704

Disclosure Date: September 08, 2021 (last updated November 28, 2024)
A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. An application may be able to execute arbitrary code with kernel privileges.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-1762

Disclosure Date: September 08, 2021 (last updated November 28, 2024)
An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 14.4 and iPadOS 14.4, macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave. Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
View More Topics  Next >