Apple Macos Big Sur vulnerabilities

CVE-2021-1853 [HIGH] CVE-2021-1853: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1853 Component: APFS Impact: A local attacker may be able to elevate their privileges Description: A logic issue was addressed with improved state management.

CVE-2020-8037 [HIGH] CVE-2020-8037: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2020-8037 Component: TCC Impact: A malicious unsandboxed app on a system with Remote Login enabled may bypass Privacy preferences Description: This issue was addressed by adding a new Remote Login option for opting into Full Disk Access for Secure Shell sessions.

CVE-2021-30752 [HIGH] CVE-2021-30752: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-30752 Component: Compression Impact: An out-of-bounds read was addressed with improved input validation Description: Processing a maliciously crafted image may lead to arbitrary code execution.

CVE-2021-1851 [HIGH] CVE-2021-1851: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1851 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A logic issue was addressed with improved state management.

CVE-2021-30743 [HIGH] CVE-2021-30743: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-30743 Component: ImageIO Impact: An out-of-bounds write was addressed with improved input validation Description: Processing a maliciously crafted image may lead to arbitrary code execution.

CVE-2021-1828 [HIGH] CVE-2021-1828: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1828 Component: Wi-Fi Impact: An application may be able to cause unexpected system termination or write kernel memory Description: A memory corruption issue was addressed with improved validation.

CVE-2021-1859 [HIGH] CVE-2021-1859: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1859 Component: Notes Impact: Locked Notes content may have been unexpectedly unlocked Description: A logic issue was addressed with improved state management.

CVE-2021-1876 [HIGH] CVE-2021-1876: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1876 Component: NSRemoteView Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2021-1808 [HIGH] CVE-2021-1808: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1808 Component: Audio Impact: An application may be able to read restricted memory Description: A memory corruption issue was addressed with improved validation.

CVE-2021-30660 [HIGH] CVE-2021-30660: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-30660 Component: Kernel Impact: A malicious application may be able to disclose kernel memory Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2021-1784 [HIGH] CVE-2021-1784: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1784 Component: DiskArbitration Impact: A malicious application may be able to modify protected parts of the file system Description: A permissions issue existed in DiskArbitration. This was addressed with additional ownership checks.

CVE-2021-1867 [HIGH] CVE-2021-1867: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1867 Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-30653 [HIGH] CVE-2021-30653: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-30653 Component: ImageIO Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2021-1813 [HIGH] CVE-2021-1813: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1813 Component: Foundation Impact: A malicious application may be able to gain root privileges Description: A validation issue was addressed with improved logic.

CVE-2021-1817 [HIGH] CVE-2021-1817: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1817 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A memory corruption issue was addressed with improved state management.

CVE-2021-30661 [HIGH] CVE-2021-30661: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-30661 Component: WebKit Storage Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Description: A use after free issue was addressed with improved memory management.

CVE-2021-1880 [HIGH] CVE-2021-1880: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1880 Component: ImageIO Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2020-8285 [HIGH] CVE-2020-8285: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2020-8285 Component: CoreText Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: A logic issue was addressed with improved state management.

CVE-2021-1847 [HIGH] CVE-2021-1847: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1847 Component: CoreGraphics Impact: Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution Description: A memory corruption issue was addressed with improved validation.

CVE-2021-1875 [HIGH] CVE-2021-1875: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1875 Component: Kernel Impact: A malicious application may be able to disclose kernel memory Description: An out-of-bounds read was addressed with improved bounds checking.