cbcvebase.
CVE-2021-30970
published 2021-08-24

CVE-2021-30970: A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.1, macOS Big Sur 11.6.2. A malicious application may be…

PriorityP432medium5.5CVSS 3.1
AVLACLPRNUIRSUCHINAN
EPSS
13.45%
96.0th percentile
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.1, macOS Big Sur 11.6.2. A malicious application may be able to bypass Privacy preferences.

Affected

6 ranges
VendorProductVersion rangeFixed in
applemacos>= 11.0 < 11.2.611.2.6
applemacos>= 12.0 < 12.112.1
applemacos>= unspecified < 12.112.1
applemacos>= unspecified < 11.611.6
applemacos_big_sur
applemacos_monterey

CVSS provenance

nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.