Apple Macos Big Sur vulnerabilities

CVE-2021-30880 [HIGH] CVE-2021-30880: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30880 Component: AppleScript Impact: Processing a maliciously crafted AppleScript binary may result in unexpected application termination or disclosure of process memory Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2021-30901 [HIGH] CVE-2021-30901: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30901 Component: Intel Graphics Driver Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: Multiple out-of-bounds write issues were addressed with improved bounds checking.

CVE-2021-30909 [HIGH] CVE-2021-30909: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30909 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2021-30881 [HIGH] CVE-2021-30881: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30881 Component: FileProvider Impact: Unpacking a maliciously crafted archive may lead to arbitrary code execution Description: An input validation issue was addressed with improved memory handling.

CVE-2021-30910 [MEDIUM] CVE-2021-30910: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30910 Component: Model I/O Impact: Processing a maliciously crafted file may disclose user information Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2021-30833 [MEDIUM] CVE-2021-30833: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30833 Component: Windows Server Impact: A local attacker may be able to view the previous logged-in user’s desktop from the fast user switching screen Description: An authentication issue was addressed with improved state management.

CVE-2021-30905 [MEDIUM] CVE-2021-30905: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30905 Component: CoreAudio Impact: Processing a maliciously crafted file may disclose user information Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2021-30911 [MEDIUM] CVE-2021-30911: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30911 Component: Model I/O Impact: Processing a maliciously crafted USD file may disclose memory contents Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2021-30892 [MEDIUM] CVE-2021-30892: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30892 Component: Windows Server Impact: A local attacker may be able to view the previous logged-in user’s desktop from the fast user switching screen Description: An authentication issue was addressed with improved state management.

CVE-2021-30913 [MEDIUM] CVE-2021-30913: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30913 Component: SoftwareUpdate Impact: An unprivileged application may be able to edit NVRAM variables Description: A logic issue was addressed with improved restrictions.

CVE-2021-30912 [MEDIUM] CVE-2021-30912: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30912 Component: SoftwareUpdate Impact: A malicious application may gain access to a user's Keychain items Description: The issue was addressed with improved permissions logic.

CVE-2021-30915 [LOW] CVE-2021-30915: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30915 Component: UIKit Impact: A person with physical access to a device may be able to determine characteristics of a user's password in a secure text entry field Description: A logic issue was addressed with improved state management.

CVE-2021-30908 [LOW] CVE-2021-30908: macOS Big Sur 11.6.1 Apple Security Update: About the security content of macOS Big Sur 11.6.1 Product: macOS Big Sur Version: 11.6.1 CVE: CVE-2021-30908 Component: Windows Server Impact: A local attacker may be able to view the previous logged-in user’s desktop from the fast user switching screen Description: An authentication issue was addressed with improved state management.

CVE-2021-30925 [CRITICAL] CVE-2021-30925: macOS Big Sur 11.6 Apple Security Update: About the security content of macOS Big Sur 11.6 Product: macOS Big Sur Version: 11.6 CVE: CVE-2021-30925 Component: Sandbox Impact: A malicious application may be able to bypass Privacy preferences Description: The issue was addressed with improved permissions logic.

CVE-2021-30844 [HIGH] CVE-2021-30844: macOS Big Sur 11.6 Apple Security Update: About the security content of macOS Big Sur 11.6 Product: macOS Big Sur Version: 11.6 CVE: CVE-2021-30844 Component: SMB Impact: A remote attacker may be able to leak memory Description: A logic issue was addressed with improved state management.

CVE-2021-30865 [HIGH] CVE-2021-30865: macOS Big Sur 11.6 Apple Security Update: About the security content of macOS Big Sur 11.6 Product: macOS Big Sur Version: 11.6 CVE: CVE-2021-30865 Component: Kernel Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-30857 [HIGH] CVE-2021-30857: macOS Big Sur 11.6 Apple Security Update: About the security content of macOS Big Sur 11.6 Product: macOS Big Sur Version: 11.6 CVE: CVE-2021-30857 Component: Kernel Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A race condition was addressed with improved locking.

CVE-2021-30829 [HIGH] CVE-2021-30829: macOS Big Sur 11.6 Apple Security Update: About the security content of macOS Big Sur 11.6 Product: macOS Big Sur Version: 11.6 CVE: CVE-2021-30829 Component: CUPS Impact: A local user may be able to execute arbitrary files Description: A URI parsing issue was addressed with improved parsing.

CVE-2021-30834 [HIGH] CVE-2021-30834: macOS Big Sur 11.6 Apple Security Update: About the security content of macOS Big Sur 11.6 Product: macOS Big Sur Version: 11.6 CVE: CVE-2021-30834 Component: CoreAudio Impact: Processing a malicious audio file may result in unexpected application termination or arbitrary code execution Description: A logic issue was addressed with improved state management.

CVE-2021-30860 [HIGH] CVE-2021-30860: macOS Big Sur 11.6 Apple Security Update: About the security content of macOS Big Sur 11.6 Product: macOS Big Sur Version: 11.6 CVE: CVE-2021-30860 Component: CoreGraphics Impact: Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Description: An integer overflow was addressed with improved input validation.