Apple Macos Monterey vulnerabilities

CVE-2021-30823 [MEDIUM] CVE-2021-30823: macOS Monterey 12.0.1 Apple Security Update: About the security content of macOS Monterey 12.0.1 Product: macOS Monterey Version: 12.0.1 CVE: CVE-2021-30823 Component: WebKit Impact: An attacker in a privileged network position may be able to bypass HSTS Description: A logic issue was addressed with improved restrictions.

CVE-2021-30861 [MEDIUM] CVE-2021-30861: macOS Monterey 12.0.1 Apple Security Update: About the security content of macOS Monterey 12.0.1 Product: macOS Monterey Version: 12.0.1 CVE: CVE-2021-30861 Component: WebKit Impact: A malicious application may bypass Gatekeeper checks Description: A logic issue was addressed with improved state management.

CVE-2021-30911 [MEDIUM] CVE-2021-30911: macOS Monterey 12.0.1 Apple Security Update: About the security content of macOS Monterey 12.0.1 Product: macOS Monterey Version: 12.0.1 CVE: CVE-2021-30911 Component: Model I/O Impact: Processing a maliciously crafted USD file may disclose memory contents Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2021-30895 [MEDIUM] CVE-2021-30895: macOS Monterey 12.0.1 Apple Security Update: About the security content of macOS Monterey 12.0.1 Product: macOS Monterey Version: 12.0.1 CVE: CVE-2021-30895 Component: Game Center Impact: A malicious application may be able to access information about a user's contacts Description: A logic issue was addressed with improved restrictions.

CVE-2021-30905 [MEDIUM] CVE-2021-30905: macOS Monterey 12.0.1 Apple Security Update: About the security content of macOS Monterey 12.0.1 Product: macOS Monterey Version: 12.0.1 CVE: CVE-2021-30905 Component: CoreAudio Impact: Processing a maliciously crafted file may disclose user information Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2020-9846 [MEDIUM] CVE-2020-9846: macOS Monterey 12.0.1 Apple Security Update: About the security content of macOS Monterey 12.0.1 Product: macOS Monterey Version: 12.0.1 CVE: CVE-2020-9846 Component: Directory Utility Impact: A malicious application may be able to access local users' Apple IDs Description: A logic issue was addressed with improved state management.

CVE-2021-30866 [MEDIUM] CVE-2021-30866: macOS Monterey 12.0.1 Apple Security Update: About the security content of macOS Monterey 12.0.1 Product: macOS Monterey Version: 12.0.1 CVE: CVE-2021-30866 Component: Bluetooth Impact: A malicious application may be able to disclose kernel memory Description: A logic issue was addressed with improved validation.

CVE-2021-30908 [LOW] CVE-2021-30908: macOS Monterey 12.0.1 Apple Security Update: About the security content of macOS Monterey 12.0.1 Product: macOS Monterey Version: 12.0.1 CVE: CVE-2021-30908 Component: Windows Server Impact: A local attacker may be able to view the previous logged in user’s desktop from the fast user switching screen Description: An authentication issue was addressed with improved state management.

CVE-2021-30915 [LOW] CVE-2021-30915: macOS Monterey 12.0.1 Apple Security Update: About the security content of macOS Monterey 12.0.1 Product: macOS Monterey Version: 12.0.1 CVE: CVE-2021-30915 Component: UIKit Impact: A person with physical access to a device may be determine characteristics of a user's password in a secure text entry field Description: A logic issue was addressed with improved state management.

CVE-2021-30994 [LOW] CVE-2021-30994: macOS Monterey 12.0.1 Apple Security Update: About the security content of macOS Monterey 12.0.1 Product: macOS Monterey Version: 12.0.1 CVE: CVE-2021-30994 Component: App Store Impact: A malicious application may be able to access local users' Apple IDs Description: An access issue was addressed with improved access restrictions.

CVE-2021-31011 CVE-2021-31011: macOS Monterey 12.0.1 Apple Security Update: About the security content of macOS Monterey 12.0.1 Product: macOS Monterey Version: 12.0.1 CVE: CVE-2021-31011 Component: Managed Configuration Impact: A user in a privileged network position may be able to leak sensitive user information Description: A logic issue was addressed with improved state management.