Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
8.6
CVSSv3

CVE-2021-30975

Published: 24/08/2021 Updated: 07/11/2023
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.6 | Impact Score: 6 | Exploitability Score: 1.8
VMScore: 606
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

This issue was addressed by disabling execution of JavaScript when viewing a scripting dictionary. This issue is fixed in macOS Monterey 12.1, Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. A malicious OSAX scripting addition may bypass Gatekeeper checks and circumvent sandbox restrictions.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apple mac os x

apple mac os x 10.15.7

apple macos

Mailing Lists

Full Disclosure: APPLE-SA-2021-12-15-2 macOS Monterey 12.1
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-12-15-2 macOS Monterey 121 macOS Monterey 121 addresses the following issues Information about the security content is also available at supportapplecom/HT212978 Airport Available for: macOS Monterey Impact: A device may be passively tracked via BSSIDs Description: An ac ...
Full Disclosure: APPLE-SA-2021-12-15-4 Security Update 2021-008 Catalina
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-12-15-4 Security Update 2021-008 Catalina Security Update 2021-008 Catalina addresses the following issues Information about the security content is also available at supportapplecom/HT212981 Archive Utility Available for: macOS Catalina Impact: A malicious application may ...
Full Disclosure: APPLE-SA-2021-12-15-3 macOS Big Sur 11.6.2
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-12-15-3 macOS Big Sur 1162 macOS Big Sur 1162 addresses the following issues Information about the security content is also available at supportapplecom/HT212979 Archive Utility Available for: macOS Big Sur Impact: A malicious application may bypass Gatekeeper checks D ...

References

CWE-863https://support.apple.com/en-us/HT212978https://support.apple.com/en-us/HT212979https://support.apple.com/en-us/HT212981https://nvd.nist.govhttp://seclists.org/fulldisclosure/2021/Dec/40
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCPCVE-2024-4577CVE-2024-2695CVE-2024-31870injectionCVE-2024-3813arbitrary codeCVE-2024-27801CVE-2024-30120
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook