CVE-2021-30677: This issue was addressed with improved environment sanitization. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-004 Catalina…

high8.8CVSS 3.1

AVLACLPRLUINSCCHIHAH

This issue was addressed with improved environment sanitization. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, macOS Big Sur 11.4, watchOS 7.5. A malicious application may be able to break out of its sandbox.

Affected

18 ranges

Vendor	Product	Version range	Fixed in
apple	ios_and_ipados	>= unspecified < 14.6	14.6
apple	ipados	< 14.6	14.6
apple	iphone_os	< 14.6	14.6
apple	mac_os_x	—	—
apple	mac_os_x	—	—
apple	mac_os_x	10.14 – 10.14.5	—
apple	mac_os_x	10.15 – 10.15.6	—
apple	macos	>= 11.0 < 11.4	11.4
apple	macos	>= unspecified < 11.4	11.4
apple	macos	>= unspecified < 14.6	14.6
apple	macos	>= unspecified < 7.5	7.5
apple	macos	>= unspecified < 2021	2021
apple	macos_big_sur	—	—
apple	security_update_2021-005_mojave	—	—
apple	tvos	< 14.6	14.6
apple	tvos	—	—
apple	watchos	< 7.5	7.5
apple	watchos	—	—