Cedowens

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 11.3 macOS versions prior to Security Update 2021-002 Catalina **Description** The issue is caused by a logic error in the implementation of system configuration settings, allowing a remote attacker to bypass security restrictions. A malicious application may bypass Gatekeeper checks. It is reported that this issue may have been actively exploited. The issue is related to a 0-day exploit used by the Shlayer malware. **Recommendations** For macOS versions prior to 11.3, update to macOS Big Sur 11.3 or later to resolve the issue. For macOS versions prior to Security Update 2021-002 Catalina, apply Security Update 2021-002 Catalina to resolve the issue. As a temporary workaround, consider restricting the use of Gatekeeper checks until a patch is available.