Apple

macOS

2525 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.6

CVE-2021-30864

  • EPSS 0.23%
  • Veröffentlicht 24.08.2021 19:15:14
  • Zuletzt bearbeitet 21.11.2024 06:04:52

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.0.1. A sandboxed process may be able to circumvent sandbox restrictions.

9.3

CVE-2021-30865

  • EPSS 0.23%
  • Veröffentlicht 24.08.2021 19:15:14
  • Zuletzt bearbeitet 21.11.2024 06:04:52

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.6, Security Update 2021-005 Catalina. A malicious application may be able to execute arbitrary code with kernel privileges.

6.5

CVE-2021-30866

  • EPSS 0.1%
  • Veröffentlicht 24.08.2021 19:15:14
  • Zuletzt bearbeitet 21.11.2024 06:04:52

A user privacy issue was addressed by removing the broadcast MAC address. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. A device may be passively tracked by its WiFi MAC address.

5.5

CVE-2021-30867

  • EPSS 0.17%
  • Veröffentlicht 24.08.2021 19:15:14
  • Zuletzt bearbeitet 21.11.2024 06:04:52

The issue was addressed with improved authentication. This issue is fixed in iOS 15 and iPadOS 15. A malicious application may be able to access photo metadata without needing permission to access photos.

8.8

CVE-2021-30851

  • EPSS 1.06%
  • Veröffentlicht 24.08.2021 19:15:13
  • Zuletzt bearbeitet 21.11.2024 06:04:50

A memory corruption vulnerability was addressed with improved locking. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution.

8.8

CVE-2021-30852

  • EPSS 0.63%
  • Veröffentlicht 24.08.2021 19:15:13
  • Zuletzt bearbeitet 21.11.2024 06:04:50

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to arbitrary code execution.

5.5

CVE-2021-30853

  • EPSS 0.21%
  • Veröffentlicht 24.08.2021 19:15:13
  • Zuletzt bearbeitet 21.11.2024 06:04:50

This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6. A malicious application may bypass Gatekeeper checks.

7.5

CVE-2021-36690

Exploit
  • EPSS 0.97%
  • Veröffentlicht 24.08.2021 14:15:09
  • Zuletzt bearbeitet 03.11.2025 22:15:49

A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a sqlite3.exe user already ha...

5.3

CVE-2021-22925

Exploit
  • EPSS 0.32%
  • Veröffentlicht 05.08.2021 21:15:11
  • Zuletzt bearbeitet 21.11.2024 05:50:55

curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending `NEW_ENV` variables, libcurlcould be ...

6.5

CVE-2021-36976

  • EPSS 0.19%
  • Veröffentlicht 20.07.2021 07:15:07
  • Zuletzt bearbeitet 03.11.2025 22:15:49

libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block).