PT-2021-18917 · Apple · Ipados+5

R3Df09

Published

2021-08-24

Updated

2023-01-09

CVE-2021-30855

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions macOS Catalina versions prior to Security Update 2021-005 iOS versions prior to 14.8 iPadOS versions prior to 14.8 iOS version 15 iPadOS version 15 watchOS version 8 macOS Big Sur version 11.6

Description A validation issue existed in the handling of symlinks, which has been addressed with improved validation of symlinks. This issue may allow an application to access restricted files.

Recommendations For macOS Catalina, apply Security Update 2021-005 to resolve the issue. For iOS and iPadOS, update to version 14.8 or later to resolve the issue. For watchOS, update to version 8 to resolve the issue. For macOS Big Sur, update to version 11.6 to resolve the issue.

Fix

Link Following

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-59

Related Identifiers

CVE-2021-30855

Affected Products

Apple Macos

Ios

Ipados

Macos Big Sur

Macos Catalina

Watchos

PT-2021-18917 · Apple · Ipados+5

CVE-2021-30855

Weakness Enumeration

Related Identifiers

Affected Products

References · 12