PT-2021-18886 · Apple · Apple Macos

Benjamin Berger

Published

2021-09-13

Updated

2021-11-03

CVE-2021-30813

CVSS v3.1

6.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions macOS versions prior to 12.0.1

Description A person with access to a host Mac may be able to bypass the Login Window in Remote Desktop for a locked instance of macOS due to a logic issue. This issue was addressed with improved checks.

Recommendations For versions prior to 12.0.1, update to macOS Monterey 12.0.1 to resolve the issue. As a temporary workaround, consider restricting access to Remote Desktop for locked instances of macOS until the update is applied.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-30813

Affected Products

Apple Macos

PT-2021-18886 · Apple · Apple Macos

CVE-2021-30813

Related Identifiers

Affected Products

References · 9