CVE-2021-30946 — Apple IOS AND Ipados vulnerability

11 documents2 sources

Severity

5.5MEDIUMNVD

EPSS

0.4%

top 36.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple IOS AND Ipados Apple Macos Apple Watchos +7 more

Timeline

PublishedAug 24

Latest updateJul 20

Description

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, macOS Big Sur 11.6.2. A malicious application may be able to bypass certain Privacy preferences.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages13 packages

▶Appleapple/macos_monterey12.1, 12.3+1

▶CVEListV5apple/macosunspecified — 12.1+1

▶NVDapple/macos11.0 — 11.6.2+1

▶Appleapple/macos_big_sur11.6.2, 11.6.6, 11.6.8+2

▶NVDapple/ipados< 15.2

📋Vendor Advisories

Apple

CVE-2021-30946: Security Update 2022-005 Catalina↗2022-07-20

▶

Apple

CVE-2021-30946: macOS Big Sur 11.6.8↗2022-07-20

▶

Apple

CVE-2021-30946: macOS Big Sur 11.6.6↗2022-05-16

▶

Apple

CVE-2021-30946: iOS 15.4 and iPadOS 15.4↗2022-03-14

▶

Apple

CVE-2021-30946: macOS Monterey 12.3↗2022-03-14

▶