Apple macOS vulnerabilities
3,139 known vulnerabilities affecting apple/mac_os_x.
Total CVEs
3,139
CISA KEV
26
actively exploited
Public exploits
265
Exploited in wild
28
Severity breakdown
CRITICAL302HIGH1409MEDIUM1236LOW192
Vulnerabilities
Page 7 of 157
CVE-2021-30835HIGHCVSS 7.8≥ 10.15, ≤ 10.15.6v10.15.72021-10-19
CVE-2021-30835 [HIGH] CVE-2021-30835: This issue was addressed with improved checks. This issue is fixed in Security Update 2021-005 Catal
This issue was addressed with improved checks. This issue is fixed in Security Update 2021-005 Catalina, iTunes 12.12 for Windows, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing a maliciously crafted image may lead to arbitrary code execution.
nvd
CVE-2021-30843HIGHCVSS 7.8≥ 10.15, ≤ 10.15.6v10.15.72021-10-19
CVE-2021-30843 [HIGH] CVE-2021-30843: This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS 14.8, macO
This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 Catalina, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing a maliciously crafted dfont file may lead to arbitrary code execution.
nvd
CVE-2021-30832HIGHCVSS 7.8≥ 10.15, ≤ 10.15.6v10.15.72021-10-19
CVE-2021-30832 [HIGH] CWE-787 CVE-2021-30832: A memory corruption issue was addressed with improved state management. This issue is fixed in Secur
A memory corruption issue was addressed with improved state management. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A local attacker may be able to elevate their privileges.
nvd
CVE-2021-30830HIGHCVSS 7.8≥ 10.15, ≤ 10.15.6v10.15.72021-10-19
CVE-2021-30830 [HIGH] CWE-787 CVE-2021-30830: A memory corruption issue was addressed with improved memory handling. This issue is fixed in Securi
A memory corruption issue was addressed with improved memory handling. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A malicious application may be able to execute arbitrary code with kernel privileges.
nvd
CVE-2021-30829HIGHCVSS 7.8≥ 10.15, ≤ 10.15.6v10.15.72021-10-19
CVE-2021-30829 [HIGH] CVE-2021-30829: A URI parsing issue was addressed with improved parsing. This issue is fixed in Security Update 2021
A URI parsing issue was addressed with improved parsing. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A local user may be able to execute arbitrary files.
nvd
CVE-2021-30827HIGHCVSS 7.8≥ 10.15, ≤ 10.15.6v10.15.72021-10-19
CVE-2021-30827 [HIGH] CWE-281 CVE-2021-30827: A permissions issue existed. This issue was addressed with improved permission validation. This issu
A permissions issue existed. This issue was addressed with improved permission validation. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A local attacker may be able to elevate their privileges.
nvd
CVE-2021-30842HIGHCVSS 7.8≥ 10.15, ≤ 10.15.6v10.15.72021-10-19
CVE-2021-30842 [HIGH] CVE-2021-30842: This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS 14.8, macO
This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 Catalina, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing a maliciously crafted dfont file may lead to arbitrary code execution.
nvd
CVE-2021-30847HIGHCVSS 7.8≥ 10.15, ≤ 10.15.6v10.15.72021-10-19
CVE-2021-30847 [HIGH] CVE-2021-30847: This issue was addressed with improved checks. This issue is fixed in watchOS 8, macOS Big Sur 11.6,
This issue was addressed with improved checks. This issue is fixed in watchOS 8, macOS Big Sur 11.6, Security Update 2021-005 Catalina, tvOS 15, iOS 15 and iPadOS 15, iTunes 12.12 for Windows. Processing a maliciously crafted image may lead to arbitrary code execution.
nvd
CVE-2021-30844HIGHCVSS 7.5≥ 10.15, ≤ 10.15.6v10.15.72021-10-19
CVE-2021-30844 [HIGH] CWE-401 CVE-2021-30844: A logic issue was addressed with improved state management. This issue is fixed in Security Update 2
A logic issue was addressed with improved state management. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A remote attacker may be able to leak memory.
nvd
CVE-2021-30811MEDIUMCVSS 5.5≥ 10.14.0, < 10.14.6≥ 10.15, < 10.15.7+2 more2021-10-19
CVE-2021-30811 [MEDIUM] CVE-2021-30811: This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15, watchOS
This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8. A local attacker may be able to read sensitive information.
nvd
CVE-2021-30828MEDIUMCVSS 5.5≥ 10.15, ≤ 10.15.6v10.15.72021-10-19
CVE-2021-30828 [MEDIUM] CVE-2021-30828: This issue was addressed with improved checks. This issue is fixed in Security Update 2021-005 Catal
This issue was addressed with improved checks. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A local user may be able to read arbitrary files as root.
nvd
CVE-2021-30850MEDIUMCVSS 5.5≥ 10.15, ≤ 10.15.6v10.15.72021-10-19
CVE-2021-30850 [MEDIUM] CVE-2021-30850: An access issue was addressed with improved access restrictions. This issue is fixed in Security Upd
An access issue was addressed with improved access restrictions. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6, tvOS 15. A user may gain access to protected parts of the file system.
nvd
CVE-2021-39537HIGHCVSS 8.8v10.12.62021-09-20
CVE-2021-39537 [HIGH] CWE-787 CVE-2021-39537: An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buf
An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buffer overflow.
nvd
CVE-2021-1882CRITICALCVSS 9.8≥ 10.15, ≤ 10.15.5v10.15.6+1 more2021-09-08
CVE-2021-1882 [CRITICAL] CWE-787 CVE-2021-1882: A memory corruption issue was addressed with improved validation. This issue is fixed in Security Up
A memory corruption issue was addressed with improved validation. This issue is fixed in Security Update 2021-002 Catalina, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. An application may be able to gain elevated privileges.
nvd
CVE-2021-30793CRITICALCVSS 9.8v10.14v10.14.0+14 more2021-09-08
CVE-2021-30793 [CRITICAL] CVE-2021-30793: A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges.
nvd
CVE-2021-30805CRITICALCVSS 9.8≥ 10.14, ≤ 10.14.6≥ 10.15, ≤ 10.15.7+3 more2021-09-08
CVE-2021-30805 [CRITICAL] CWE-787 CVE-2021-30805: A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS
A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges.
nvd
CVE-2021-30690CRITICALCVSS 9.8≥ 10.14, ≤ 10.14.5v10.14.62021-09-08
CVE-2021-30690 [CRITICAL] CVE-2021-30690: Multiple issues in apache were addressed by updating apache to version 2.4.46. This issue is fixed i
Multiple issues in apache were addressed by updating apache to version 2.4.46. This issue is fixed in Security Update 2021-004 Mojave. Multiple issues in apache.
nvd
CVE-2021-30655CRITICALCVSS 9.8≥ 10.15, ≤ 10.15.5v10.15.6+1 more2021-09-08
CVE-2021-30655 [CRITICAL] CVE-2021-30655: An application may be able to execute arbitrary code with system privileges. This issue is fixed in
An application may be able to execute arbitrary code with system privileges. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina. The issue was addressed with improved permissions logic.
nvd
CVE-2021-1834CRITICALCVSS 9.8v10.14v10.14.0+14 more2021-09-08
CVE-2021-1834 [CRITICAL] CWE-787 CVE-2021-1834: An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in mac
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. A malicious application may be able to execute arbitrary code with kernel privileges.
nvd
CVE-2021-30678CRITICALCVSS 9.8≥ 10.14, ≤ 10.14.5≥ 10.15, ≤ 10.15.6+2 more2021-09-08
CVE-2021-30678 [CRITICAL] CVE-2021-30678: A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.
nvd