PT-2021-19007 · Apple · Ios+3

Andy Grant

Published

2021-08-24

Updated

2021-12-29

CVE-2021-30964

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions macOS versions prior to 12.1 watchOS versions prior to 8.3 iOS versions prior to 15.2 iPadOS versions prior to 15.2

Description A malicious application may be able to bypass Privacy preferences due to an inherited permissions issue. This issue was addressed with additional restrictions.

Recommendations For macOS versions prior to 12.1, update to macOS Monterey 12.1 or later. For watchOS versions prior to 8.3, update to watchOS 8.3 or later. For iOS versions prior to 15.2, update to iOS 15.2 or later. For iPadOS versions prior to 15.2, update to iPadOS 15.2 or later.

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2021-30964

Affected Products

Apple Macos

Ios

Ipados

Watchos

PT-2021-19007 · Apple · Ios+3

CVE-2021-30964

Weakness Enumeration

Related Identifiers

Affected Products

References · 7