CVE-2021-30913 — Apple Macos vulnerability

9 documents4 sources

Severity

5.5MEDIUMNVD

EPSS

0.2%

top 61.55%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Macos Apple MAC OS X

Timeline

PublishedAug 24

Latest updateApr 4

Description

The issue was addressed with improved permissions logic. This issue is fixed in macOS Monterey 12.0.1, macOS Big Sur 11.6.1. An unprivileged application may be able to edit NVRAM variables.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶CVEListV5apple/macosunspecified — 12.0+1

▶NVDapple/macos11.0 — 11.6.1+1

▶NVDapple/mac_os_x10.15 — 10.15.7+1

🔴Vulnerability Details

CVEList

CVE-2021-30913: The issue was addressed with improved permissions logic↗2021-08-24

▶

📋Vendor Advisories

Apple

CVE-2021-30913: Security Update 2021-007 Catalina↗2021-10-25

▶

Apple

CVE-2021-30913: macOS Monterey 12.0.1↗2021-10-25

▶

Apple

CVE-2021-30913: macOS Big Sur 11.6.1↗2021-10-25

▶

🕵️Threat Intelligence

Trendmicro

MacOS SUHelper Root Privilege Escalation Vulnerability A Deep Dive Into CVE-2022-22639↗2022-04-04

▶

Trendmicro

MacOS SUHelper Root Privilege Escalation Vulnerability A Deep Dive Into CVE-2022-22639↗2022-04-04

▶

Trendmicro

MacOS SUHelper Root Privilege Escalation Vulnerability A Deep Dive Into CVE-2022-22639↗2022-04-04

▶

Trendmicro

MacOS SUHelper Root Privilege Escalation Vulnerability A Deep Dive Into CVE-2022-22639↗2022-04-04

▶