Apple macOS vulnerabilities
3,139 known vulnerabilities affecting apple/mac_os_x.
Total CVEs
3,139
CISA KEV
26
actively exploited
Public exploits
265
Exploited in wild
28
Severity breakdown
CRITICAL302HIGH1409MEDIUM1236LOW192
Vulnerabilities
Page 8 of 157
CVE-2021-1828HIGHCVSS 7.1≥ 10.14, ≤ 10.14.5≥ 10.15, ≤ 10.15.5+3 more2021-09-08
CVE-2021-1828 [HIGH] CWE-787 CVE-2021-1828: A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Big S
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. An application may be able to cause unexpected system termination or write kernel memory.
nvd
CVE-2021-30676HIGHCVSS 7.1≥ 10.14, ≤ 10.14.5≥ 10.15, ≤ 10.15.6+2 more2021-09-08
CVE-2021-30676 [HIGH] CVE-2021-30676: A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A local user may be able to cause unexpected system termination or read kernel memory.
nvd
CVE-2021-1839HIGHCVSS 7.8v10.14v10.14.0+14 more2021-09-08
CVE-2021-1839 [HIGH] CWE-269 CVE-2021-1839: The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11.3,
The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. A local attacker may be able to elevate their privileges.
nvd
CVE-2021-30760HIGHCVSS 7.8v10.14v10.14.0+14 more2021-09-08
CVE-2021-30760 [HIGH] CWE-190 CVE-2021-30760: An integer overflow was addressed through improved input validation. This issue is fixed in iOS 14.7
An integer overflow was addressed through improved input validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-005 Mojave, Security Update 2021-004 Catalina. Processing a maliciously crafted font file may lead to arbitrary code execution.
nvd
CVE-2021-30775HIGHCVSS 7.8≥ 10.15, ≤ 10.15.6v10.15.72021-09-08
CVE-2021-30775 [HIGH] CWE-787 CVE-2021-30775: A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 1
A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-004 Catalina. Processing a maliciously crafted audio file may lead to arbitrary code execution.
nvd
CVE-2021-30652HIGHCVSS 7.0≥ 10.14, ≤ 10.14.5≥ 10.15, ≤ 10.15.5+3 more2021-09-08
CVE-2021-30652 [HIGH] CWE-362 CVE-2021-30652: A race condition was addressed with additional validation. This issue is fixed in Security Update 20
A race condition was addressed with additional validation. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. A malicious application may be able to gain root privileges.
nvd
CVE-2021-30683HIGHCVSS 7.8≥ 10.14, ≤ 10.14.5≥ 10.15, ≤ 10.15.6+2 more2021-09-08
CVE-2021-30683 [HIGH] CWE-416 CVE-2021-30683: A use after free issue was addressed with improved memory management. This issue is fixed in macOS B
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A malicious application could execute arbitrary code leading to compromise of user information.
nvd
CVE-2021-1841HIGHCVSS 7.8v10.14v10.14.0+14 more2021-09-08
CVE-2021-1841 [HIGH] CWE-787 CVE-2021-1841: A malicious application may be able to execute arbitrary code with kernel privileges. This issue is
A malicious application may be able to execute arbitrary code with kernel privileges. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina. An out-of-bounds write issue was addressed with improved bounds checking.
nvd
CVE-2021-30712HIGHCVSS 7.8≥ 10.14, ≤ 10.14.5≥ 10.15, ≤ 10.15.6+2 more2021-09-08
CVE-2021-30712 [HIGH] CVE-2021-30712: A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.
nvd
CVE-2021-1784HIGHCVSS 7.5≥ 10.14, ≤ 10.14.5≥ 10.15, ≤ 10.15.5+3 more2021-09-08
CVE-2021-1784 [HIGH] CVE-2021-1784: A permissions issue existed in DiskArbitration. This was addressed with additional ownership checks.
A permissions issue existed in DiskArbitration. This was addressed with additional ownership checks. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. A malicious application may be able to modify protected parts of the file system.
nvd
CVE-2021-30789HIGHCVSS 7.8≥ 10.15, ≤ 10.15.6v10.15.72021-09-08
CVE-2021-30789 [HIGH] CWE-125 CVE-2021-30789: An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.7,
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-004 Catalina. Processing a maliciously crafted font file may lead to arbitrary code execution.
nvd
CVE-2021-30781HIGHCVSS 7.8≥ 10.14, ≤ 10.14.5≥ 10.15, ≤ 10.15.6+2 more2021-09-08
CVE-2021-30781 [HIGH] CVE-2021-30781: This issue was addressed with improved checks. This issue is fixed in iOS 14.7, macOS Big Sur 11.5,
This issue was addressed with improved checks. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-005 Mojave, Security Update 2021-004 Catalina. A local attacker may be able to cause unexpected application termination or arbitrary code execution.
nvd
CVE-2021-30703HIGHCVSS 7.8≥ 10.14, ≤ 10.14.5≥ 10.15, ≤ 10.15.6+2 more2021-09-08
CVE-2021-30703 [HIGH] CWE-415 CVE-2021-30703: A double free issue was addressed with improved memory management. This issue is fixed in tvOS 14.6,
A double free issue was addressed with improved memory management. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, macOS Big Sur 11.4, watchOS 7.5. An application may be able to execute arbitrary code with kernel privileges.
nvd
CVE-2021-1808HIGHCVSS 7.5≥ 10.14, ≤ 10.14.5≥ 10.15, ≤ 10.15.5+3 more2021-09-08
CVE-2021-1808 [HIGH] CWE-787 CVE-2021-1808: A memory corruption issue was addressed with improved validation. This issue is fixed in Security Up
A memory corruption issue was addressed with improved validation. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. An application may be able to read restricted memory.
nvd
CVE-2021-30688HIGHCVSS 8.8≥ 10.15, ≤ 10.15.6v10.15.72021-09-08
CVE-2021-30688 [HIGH] CVE-2021-30688: A malicious application may be able to break out of its sandbox. This issue is fixed in macOS Big Su
A malicious application may be able to break out of its sandbox. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina. A path handling issue was addressed with improved validation.
nvd
CVE-2021-30774HIGHCVSS 7.8≥ 10.15, < 10.15.7v10.15.72021-09-08
CVE-2021-30774 [HIGH] CVE-2021-30774: A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, macOS Big Sur
A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. A malicious application may be able to gain root privileges.
nvd
CVE-2021-30785HIGHCVSS 7.8≥ 10.15, ≤ 10.15.6v10.15.72021-09-08
CVE-2021-30785 [HIGH] CWE-120 CVE-2021-30785: A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 14.7, macO
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-004 Catalina. Processing a maliciously crafted image may lead to arbitrary code execution.
nvd
CVE-2021-30719HIGHCVSS 7.1≥ 10.15, ≤ 10.15.6v10.15.72021-09-08
CVE-2021-30719 [HIGH] CWE-125 CVE-2021-30719: A local user may be able to cause unexpected system termination or read kernel memory. This issue is
A local user may be able to cause unexpected system termination or read kernel memory. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina. An out-of-bounds read issue was addressed by removing the vulnerable code.
nvd
CVE-2021-1840HIGHCVSS 7.8v10.14v10.14.0+14 more2021-09-08
CVE-2021-1840 [HIGH] CWE-787 CVE-2021-1840: A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Big S
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. A local attacker may be able to elevate their privileges.
nvd
CVE-2021-30787HIGHCVSS 7.8≥ 10.14, ≤ 10.14.5≥ 10.15, ≤ 10.15.6+2 more2021-09-08
CVE-2021-30787 [HIGH] CVE-2021-30787: This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.5, Security U
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to cause unexpected system termination or write kernel memory.
nvd