PT-2021-19009 · Apple · Apple Macos+4

Matt Vlasach

Published

2021-08-24

Updated

2023-08-08

CVE-2021-30966

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions macOS versions prior to 12.1 watchOS versions prior to 8.3 iOS versions prior to 15.2 iPadOS versions prior to 15.2 tvOS versions prior to 15.2

Description A logic issue was addressed with improved state management, which could cause user traffic to be leaked to a proxy server despite PAC configurations.

Recommendations For macOS versions prior to 12.1, update to macOS Monterey 12.1 or later. For watchOS versions prior to 8.3, update to watchOS 8.3 or later. For iOS versions prior to 15.2, update to iOS 15.2 or later. For iPadOS versions prior to 15.2, update to iPadOS 15.2 or later. For tvOS versions prior to 15.2, update to tvOS 15.2 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-30966

Affected Products

Apple Macos

Ios

Ipados

Tvos

Watchos

PT-2021-19009 · Apple · Apple Macos+4

CVE-2021-30966

Related Identifiers

Affected Products

References · 8