Apple Macos Big Sur vulnerabilities

CVE-2021-1841 [HIGH] CVE-2021-1841: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1841 Component: Intel Graphics Driver Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2021-1840 [HIGH] CVE-2021-1840: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1840 Component: Kernel Impact: A local attacker may be able to elevate their privileges Description: A memory corruption issue was addressed with improved validation.

CVE-2021-30664 [HIGH] CVE-2021-30664: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-30664 Component: CoreAudio Impact: Processing a maliciously crafted file may lead to arbitrary code execution Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2021-1843 [HIGH] CVE-2021-1843: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1843 Component: ImageIO Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2021-1814 [HIGH] CVE-2021-1814: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1814 Component: ImageIO Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2021-30652 [HIGH] CVE-2021-30652: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-30652 Component: Kernel Impact: A malicious application may be able to disclose kernel memory Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2021-1849 [HIGH] CVE-2021-1849: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1849 Component: AppleMobileFileIntegrity Impact: A malicious application may be able to bypass Privacy preferences Description: An issue in code signature validation was addressed with improved checks.

CVE-2020-8286 [HIGH] CVE-2020-8286: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2020-8286 Component: CoreText Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: A logic issue was addressed with improved state management.

CVE-2021-1881 [HIGH] CVE-2021-1881: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1881 Component: FontParser Impact: Processing a maliciously crafted font file may lead to arbitrary code execution Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-1873 [MEDIUM] CVE-2021-1873: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1873 Component: WindowServer Impact: A malicious application may be able to unexpectedly leak a user's credentials from secure text fields Description: An API issue in Accessibility TCC permissions was addressed with improved state management.

CVE-2021-1861 [MEDIUM] CVE-2021-1861: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1861 Component: Safari Impact: A malicious website may be able to track users by setting state in a cache Description: An issue existed in determining cache occupancy. The issue was addressed through improved logic.

CVE-2021-1846 [MEDIUM] CVE-2021-1846: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1846 Component: CoreAudio Impact: Processing a maliciously crafted audio file may disclose restricted memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-1811 [MEDIUM] CVE-2021-1811: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1811 Component: CoreText Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: A logic issue was addressed with improved state management.

CVE-2021-1884 [MEDIUM] CVE-2021-1884: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1884 Component: Heimdal Impact: A remote attacker may be able to cause a denial of service Description: A race condition was addressed with improved locking.

CVE-2021-1872 [MEDIUM] CVE-2021-1872: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1872 Component: FaceTime Impact: Muting a CallKit call while ringing may not result in mute being enabled Description: A logic issue was addressed with improved state management.

CVE-2021-1810 [MEDIUM] CVE-2021-1810: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1810 Component: Archive Utility Impact: A malicious application may bypass Gatekeeper checks Description: A logic issue was addressed with improved state management.

CVE-2021-1740 [MEDIUM] CVE-2021-1740: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1740 Component: Preferences Impact: A local user may be able to modify protected parts of the file system Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2021-30659 [MEDIUM] CVE-2021-30659: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-30659 Component: CoreFoundation Impact: A malicious application may be able to leak sensitive user information Description: A validation issue was addressed with improved logic.

CVE-2021-1826 [MEDIUM] CVE-2021-1826: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1826 Component: WebKit Impact: Processing maliciously crafted web content may lead to universal cross site scripting Description: A logic issue was addressed with improved restrictions.

CVE-2021-1815 [MEDIUM] CVE-2021-1815: macOS Big Sur 11.3 Apple Security Update: About the security content of macOS Big Sur 11.3 Product: macOS Big Sur Version: 11.3 CVE: CVE-2021-1815 Component: Preferences Impact: A local user may be able to modify protected parts of the file system Description: A parsing issue in the handling of directory paths was addressed with improved path validation.