Apple Macos Monterey vulnerabilities

CVE-2021-30949 [HIGH] CVE-2021-30949: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30949 Component: Kernel Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved state management.

CVE-2021-30945 [HIGH] CVE-2021-30945: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30945 Component: Crash Reporter Impact: A local attacker may be able to elevate their privileges Description: This issue was addressed with improved checks.

CVE-2021-30971 [HIGH] CVE-2021-30971: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30971 Component: Model I/O Impact: Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2021-30958 [HIGH] CVE-2021-30958: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30958 Component: CoreAudio Impact: Playing a malicious audio file may lead to arbitrary code execution Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-30938 [HIGH] CVE-2021-30938: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30938 Component: Wi-Fi Impact: A local user may be able to cause unexpected system termination or read kernel memory Description: This issue was addressed with improved checks.

CVE-2021-30936 [HIGH] CVE-2021-30936: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30936 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2021-30966 [HIGH] CVE-2021-30966: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30966 Component: CFNetwork Proxies Impact: User traffic might unexpectedly be leaked to a proxy server despite PAC configurations Description: A logic issue was addressed with improved state management.

CVE-2021-30995 [HIGH] CVE-2021-30995: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30995 Component: Preferences Impact: A malicious application may be able to elevate privileges Description: A race condition was addressed with improved state handling.

CVE-2021-30981 [HIGH] CVE-2021-30981: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30981 Component: Intel Graphics Driver Impact: An application may be able to execute arbitrary code with kernel privileges Description: A buffer overflow was addressed with improved bounds checking.

CVE-2021-30996 [HIGH] CVE-2021-30996: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30996 Component: IOMobileFrameBuffer Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A race condition was addressed with improved state handling.

CVE-2021-30979 [HIGH] CVE-2021-30979: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30979 Component: Model I/O Impact: Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2021-30993 [HIGH] CVE-2021-30993: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30993 Component: Kernel Impact: An attacker in a privileged network position may be able to execute arbitrary code Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2021-30942 [HIGH] CVE-2021-30942: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30942 Component: ColorSync Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: A memory corruption issue in the processing of ICC profiles was addressed with improved input validation.

CVE-2021-30957 [HIGH] CVE-2021-30957: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30957 Component: CoreAudio Impact: Processing a maliciously crafted audio file may lead to arbitrary code execution Description: A buffer overflow was addressed with improved memory handling.

CVE-2021-30953 [HIGH] CVE-2021-30953: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30953 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2021-30935 [HIGH] CVE-2021-30935: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30935 Component: CoreBluetooth Impact: An application may be able to execute arbitrary code with kernel privileges Description: A logic issue was addressed with improved validation.

CVE-2021-30980 [HIGH] CVE-2021-30980: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30980 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A use after free issue was addressed with improved memory management.

CVE-2021-30972 [MEDIUM] CVE-2021-30972: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30972 Component: TCC Impact: A malicious application may be able to bypass certain Privacy preferences Description: This issue was addressed with improved checks.

CVE-2021-30965 [MEDIUM] CVE-2021-30965: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30965 Component: TCC Impact: A malicious application may be able to cause a denial of service to Endpoint Security clients Description: A logic issue was addressed with improved state management.

CVE-2021-30968 [MEDIUM] CVE-2021-30968: macOS Monterey 12.1 Apple Security Update: About the security content of macOS Monterey 12.1 Product: macOS Monterey Version: 12.1 CVE: CVE-2021-30968 Component: Sandbox Impact: A malicious application may be able to bypass certain Privacy preferences Description: A validation issue related to hard link behavior was addressed with improved sandbox restrictions.