CVE-2021-30704

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 14.6 Apple iPadOS versions prior to 14.6 Apple tvOS versions prior to 14.6 Apple watchOS versions prior to 7.5 Apple macOS versions prior to 11.4

Description A logic issue was addressed with improved state management, which may allow an application to execute arbitrary code with kernel privileges. The issue is related to insufficient access control in the kernel of the operating systems, potentially allowing an attacker to elevate their privileges.

Recommendations For Apple iOS versions prior to 14.6, update to iOS 14.6 or later. For Apple iPadOS versions prior to 14.6, update to iPadOS 14.6 or later. For Apple tvOS versions prior to 14.6, update to tvOS 14.6 or later. For Apple watchOS versions prior to 7.5, update to watchOS 7.5 or later. For Apple macOS versions prior to 11.4, update to macOS Big Sur 11.4 or apply Security Update 2021-004 for Mojave or Security Update 2021-003 for Catalina.