⚠ Actively exploited
Added to CISA KEV on 2021-11-03. Federal agencies required to patch by 2021-11-17. Required action: Apply updates per vendor instructions..

CVE-2021-30657Missing Authorization in Apple Macos

CWE-862Missing AuthorizationCWE-494Download of Code Without Integrity Check8 documents7 sources
Severity
5.5MEDIUMNVD
EPSS
83.1%
top 0.74%
CISA KEV
KEV
Added 2021-11-03
Due 2021-11-17
Exploit
Exploited in wild
Active exploitation observed
Affected products
2
Apple MacosApple MAC OS X
Timeline
PublishedSep 8
KEV addedNov 3
KEV dueNov 17
Latest updateMay 24
CISA Required Action: Apply updates per vendor instructions.

Description

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina. A malicious application may bypass Gatekeeper checks. Apple is aware of a report that this issue may have been actively exploited..

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

CVEListV5apple/macosunspecified11.3+1
NVDapple/macos11.011.3
NVDapple/mac_os_x10.1510.15.5+2

🔴Vulnerability Details

3
GHSA
GHSA-4f6h-9vp6-5p6r: A logic issue was addressed with improved state management2022-05-24
CVEList
CVE-2021-30657: A logic issue was addressed with improved state management2021-09-08
VulnCheck
Apple macOS Unspecified Vulnerability2021

💥Exploits & PoCs

1
Metasploit
macOS Gatekeeper check bypass

📋Vendor Advisories

3
CISA
Apple macOS Unspecified Vulnerability2021-11-03
Apple
CVE-2021-30657: Security Update 2021-002 Catalina2021-04-26
Apple
CVE-2021-30657: macOS Big Sur 11.32021-04-26
CVE-2021-30657 — Missing Authorization in Apple Macos | cvebase