Skip to main content

Apple Products Multiple Vulnerabilities

Release Date: 25 May 2021 1670 Views

RISK: High Risk

TYPE: Operating Systems - Mac OS

TYPE: Mac OS

Multiple vulnerabilities were identified in Apple products, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure, data manipulation, security restriction bypass and cross-site scripting attack on the targeted system.

 

Note:

CVE-2021-30663, CVE-2021-30665 and CVE-2021-30713 are being exploited in the wild


Impact

  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure
  • Data Manipulation
  • Cross-Site Scripting

System / Technologies affected

  • Versions prior to  tvOS 14.6
  • Versions prior to  watchOS 7.5
  • Versions prior to  iOS 14.6
  • Versions prior to  iPadOS 14.6
  • Versions prior to  macOS Big Sur 11.4
  • Versions prior to  macOS Mojave Security Update 2021-004 Mojave
  • Versions prior to  macOS Catalina Security Update 2021-003 Catalina
  • Versions prior to  Safari 14.1.1

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 
Apply fixes issued by the vendor:
 
  • tvOS 14.6
  • watchOS 7.5
  • iOS 14.6
  • iPadOS 14.6
  • macOS Big Sur 11.4
  • macOS Mojave Security Update 2021-004 Mojave
  • macOS Catalina Security Update 2021-003 Catalina
  • Safari 14.1.1

Vulnerability Identifier


Source


Related Link

https://support.apple.com/en-us/HT201222