Published: 24/08/2021 Updated: 28/12/2021
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Vulnerability Summary

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.1, macOS Big Sur 11.6.2. A malicious application may be able to bypass Privacy preferences.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apple macos

Mailing Lists

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-12-15-3 macOS Big Sur 1162 macOS Big Sur 1162 addresses the following issues Information about the security content is also available at supportapplecom/HT212979 Archive Utility Available for: macOS Big Sur Impact: A malicious application may bypass Gatekeeper checks D ...
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-12-15-2 macOS Monterey 121 macOS Monterey 121 addresses the following issues Information about the security content is also available at supportapplecom/HT212978 Airport Available for: macOS Monterey Impact: A device may be passively tracked via BSSIDs Description: An ac ...

Recent Articles

MacOS Bug Could Let Creeps Snoop On You
Threatpost • Lisa Vaas • 11 Jan 2022

Microsoft on Monday released details about a bug in macOS that Apple fixed last month – named “powerdir” – that could let attackers hijack apps, install their own nasty apps, use the microphone to eavesdrop or grab screenshots of whatever’s displayed on your screen.
The vulnerability allows malicious apps to bypass privacy preferences. Specifically, it could allow an attacker to bypass the operating system’s Transparency, Consent and Control (TCC) technology, thereby gaining un...