CVE-2021-30913

Published: Aug 24, 2021Modified: Nov 21, 2024

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

The issue was addressed with improved permissions logic. This issue is fixed in macOS Monterey 12.0.1, macOS Big Sur 11.6.1. An unprivileged application may be able to edit NVRAM variables.

Affected (13)

Products: Apple: Mac Os X, Macos

Apple

2 products

Mac Os X

Macos

Configuration A

13 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	From 10.15 to 10.15.7
Apple Mac Os X	Version 10.15.7
Apple Mac Os X	Version 10.15.7 security_update_2020-001
Apple Mac Os X	Version 10.15.7 security_update_2020-005
Apple Mac Os X	Version 10.15.7 security_update_2020-007
Apple Mac Os X	Version 10.15.7 security_update_2020
Apple Mac Os X	Version 10.15.7 security_update_2021-001
Apple Mac Os X	Version 10.15.7 security_update_2021-002
Apple Mac Os X	Version 10.15.7 security_update_2021-003
Apple Mac Os X	Version 10.15.7 security_update_2021-006
Apple Mac Os X	Version 10.15.7 supplemental_update
Apple Macos	From 11.0 to 11.6.1
Apple Macos	Version 12.0

References (6)

https://support.apple.com/en-us/HT212869

Source: product-security@apple.com

https://support.apple.com/en-us/HT212872

Source: product-security@apple.com

https://support.apple.com/kb/HT212871

Source: product-security@apple.com

https://support.apple.com/en-us/HT212869

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/en-us/HT212872

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/kb/HT212871

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.