PT-2021-8039 · Apple · Apple Macos

Weiteng Chen

Published

2021-08-24

Updated

2021-11-02

CVE-2021-30899

CVSS v2.0

7.6

High

Vector

AV:N/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions macOS versions prior to 12.0.1 macOS Big Sur versions prior to 11.6.1 Security Update versions prior to 2021-007 Catalina

Description A race condition was addressed with improved state handling, which may allow a malicious application to execute arbitrary code with kernel privileges. The issue is related to a Bluetooth component vulnerability in the macOS operating system, caused by concurrent execution using a shared resource with incorrect synchronization.

Recommendations For macOS versions prior to 12.0.1, update to macOS Monterey 12.0.1 or later. For macOS Big Sur versions prior to 11.6.1, update to macOS Big Sur 11.6.1 or later. For Security Update versions prior to 2021-007 Catalina, apply Security Update 2021-007 Catalina or later.

Fix

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

BDU:2024-03949

CVE-2021-30899

Affected Products

Apple Macos

PT-2021-8039 · Apple · Apple Macos

CVE-2021-30899

Weakness Enumeration

Related Identifiers

Affected Products

References · 10