CVE-2021-30908 — Apple Macos vulnerability

3 documents2 sources

Severity

3.3LOWNVD

EPSS

0.0%

top 85.11%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Macos Apple Macos BIG SUR Apple Macos Monterey

Timeline

PublishedAug 24

Latest updateOct 25

Description

An authentication issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.0.1, macOS Big Sur 11.6.1. A local attacker may be able to view the previous logged-in user’s desktop from the fast user switching screen.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages4 packages

▶Appleapple/macos_monterey12.0.1

▶CVEListV5apple/macosunspecified — 12.0+1

▶NVDapple/macos11.0 — 11.6.1+1

▶Appleapple/macos_big_sur11.6.1

📋Vendor Advisories

Apple

CVE-2021-30908: macOS Monterey 12.0.1↗2021-10-25

▶

Apple

CVE-2021-30908: macOS Big Sur 11.6.1↗2021-10-25

▶