cbcvebase.
CVE-2021-30721
published 2021-09-08

CVE-2021-30721: A path handling issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update…

PriorityP343medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
EPSS
23.58%
97.5th percentile
A path handling issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. An attacker in a privileged network position may be able to leak sensitive user information.

Affected

10 ranges
VendorProductVersion rangeFixed in
applemac_os_x
applemac_os_x
applemac_os_x10.14.0 – 10.14.5
applemac_os_x10.15 – 10.15.6
applemacos>= 11.0.1 < 11.411.4
applemacos>= unspecified < 11.411.4
applemacos>= unspecified < 20212021
applemacos_big_sur
applesecurity_update_2021-003_catalina
applesecurity_update_2021-004_mojave

CVSS provenance

nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.