|
193661
|
7.0 |
HIGH
Local
|
apple
|
mac_os_x
watchos
tvos
ipados
iphone_os
macos
|
A race condition was addressed with improved locking. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, tvOS 15, iOS 15 and iPadOS 15, watchOS 8, macOS Big Sur 11.6.…
|
CWE-362
Race Condition
|
CVE-2021-30857
|
2024-11-21 15:04 |
2021-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
193662
|
9.1 |
CRITICAL
Network
|
apple
|
macos
|
This issue was addressed by adding a new Remote Login option for opting into Full Disk Access for Secure Shell sessions. This issue is fixed in macOS Big Sur 11.3. A malicious unsandboxed app on a sy…
|
CWE-863
Incorrect Authorization
|
CVE-2021-30856
|
2024-11-21 15:04 |
2021-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
193663
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
ipados
iphone_os
macos
watchos
tvos
|
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14…
|
CWE-59
Link Following
|
CVE-2021-30855
|
2024-11-21 15:04 |
2021-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
193664
|
8.6 |
HIGH
Network
|
apple
|
watchos
tvos
ipados
iphone_os
|
A logic issue was addressed with improved state management. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. A sandboxed process may be able to circumvent sandbox restrictions.
|
NVD-CWE-noinfo
|
CVE-2021-30854
|
2024-11-21 15:04 |
2021-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
193665
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6. A malicious application may bypass Gatekeeper checks.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-30853
|
2024-11-21 15:04 |
2021-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
193666
|
8.8 |
HIGH
Network
|
apple
|
ipados
iphone_os
watchos
tvos
macos
|
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web conte…
|
CWE-843
Type Confusion
|
CVE-2021-30852
|
2024-11-21 15:04 |
2021-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
193667
|
8.8 |
HIGH
Network
|
apple
debian
fedoraproject
|
watchos
tvos
ipados
iphone_os
safari
macos
debian_linux
fedora
|
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead …
|
CWE-787
Out-of-bounds Write
|
CVE-2021-30851
|
2024-11-21 15:04 |
2021-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
193668
|
4.3 |
MEDIUM
Network
|
google
fedoraproject
|
chrome
fedora
|
Insufficient validation of untrusted input in Sharing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to bypass navigation restrictions via a crafted click-to-call link.
|
CWE-20
CWE-116
Improper Input Validation
Improper Encoding or Escaping of Output
|
CVE-2021-30589
|
2024-11-21 15:04 |
2021-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
193669
|
8.8 |
HIGH
Network
|
google
fedoraproject
|
chrome
fedora
|
Type confusion in V8 in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-843
Type Confusion
|
CVE-2021-30588
|
2024-11-21 15:04 |
2021-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
193670
|
4.3 |
MEDIUM
Network
|
google
fedoraproject
|
chrome
fedora
|
Inappropriate implementation in Compositing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2021-30587
|
2024-11-21 15:04 |
2021-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
