Gary Nield

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Big Sur 11.5 Security Update versions prior to 2021-004 Catalina Security Update versions prior to 2021-005 Mojave **Description** An injection issue was addressed with improved validation, which may allow a malicious application to gain root privileges. **Recommendations** For macOS versions prior to Big Sur 11.5, update to macOS Big Sur 11.5. For Security Update versions prior to 2021-004 Catalina, apply Security Update 2021-004 Catalina. For Security Update versions prior to 2021-005 Mojave, apply Security Update 2021-005 Mojave.

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.3 Security Update versions prior to 2021-002 Catalina Security Update versions prior to 2021-003 Mojave Description: The issue was addressed with improved permissions logic. A local attacker may be able to elevate their privileges. Recommendations: For macOS versions prior to 11.3, update to macOS Big Sur 11.3. For Security Update versions prior to 2021-002 Catalina, apply Security Update 2021-002 Catalina. For Security Update versions prior to 2021-003 Mojave, apply Security Update 2021-003 Mojave.

Name of the Vulnerable Software and Affected Versions: macOS Big Sur versions prior to 11.3 Description: A logic issue was addressed with improved state management, which may allow a local attacker to elevate their privileges. Recommendations: For versions prior to 11.3, update to macOS Big Sur 11.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Big Sur 11.3 macOS Catalina versions prior to Security Update 2021-002 **Description** An application may be able to execute arbitrary code with system privileges. The issue was addressed with improved permissions logic. **Recommendations** For macOS Big Sur, update to version 11.3 or later. For macOS Catalina, apply Security Update 2021-002 or later.