CVE-2021-30939

Home/CVE/An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.

CVE

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing a maliciously crafted image may lead to arbitrary code execution.

HIGH · CVSS 7.8 EPSS 0.00411

Schedule remediation

CVSS base score ≥ 7.0

Sigma rules8 YARA rules0

⬡

Weakness Classification

CWE-125Out-of-bounds Read

▤

Affected Products & Versions

apple ipados< 15.2
apple iphone os< 15.2
apple mac os x>= 10.15 and < 10.15.7
apple mac os xall versions
apple macos>= 11.0 and < 11.6.2
apple macos>= 12.0 and < 12.1
apple tvos< 15.2
apple watchos< 8.3

◈

Sigma Hunt Rules

Exact rules name this CVE ID. Product rules name an affected product in their title. Related rules cover techniques used by actors who exploited this CVE. Showing the most relevant matches; the complete related set is on the full drill-down.

producthighSuspicious Microsoft Office Child Process - MacOS

producthighRemote Access Tool - Renamed MeshAgent Execution - MacOS

producthighBinary Padding - MacOS

productmediumSuspicious Execution via macOS Script Editor

productmediumSystem Information Discovery Via Sysctl - MacOS

productmediumNew File Exclusion Added To Time Machine Via Tmutil - MacOS

Show all 8 top matches

productmediumSuspicious MacOS Firmware Activity

productmediumDisk Image Mounting Via Hdiutil - MacOS

▣