CVE-2021-30995

Home/CVE/A race condition was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, mac

CVE

A race condition was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, mac

A race condition was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. A malicious application may be able to elevate privileges.

HIGH · CVSS 7 EPSS 0.00179

Schedule remediation

CVSS base score ≥ 7.0

Sigma rules8 YARA rules0

⬡

Weakness Classification

CWE-362Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

▤

Affected Products & Versions

apple ipados< 15.2
apple iphone os< 15.2
apple mac os x>= 10.15 and < 10.15.7
apple mac os xall versions
apple macos>= 11.0 and < 11.6.2
apple macos>= 12.0 and < 12.1
apple tvos< 15.2
apple watchos< 8.3

◈

Sigma Hunt Rules

Exact rules name this CVE ID. Product rules name an affected product in their title. Related rules cover techniques used by actors who exploited this CVE. Showing the most relevant matches; the complete related set is on the full drill-down.

producthighSuspicious Microsoft Office Child Process - MacOS

producthighRemote Access Tool - Renamed MeshAgent Execution - MacOS

producthighBinary Padding - MacOS

productmediumSuspicious Execution via macOS Script Editor

productmediumSystem Information Discovery Via Sysctl - MacOS

productmediumNew File Exclusion Added To Time Machine Via Tmutil - MacOS

Show all 8 top matches

productmediumSuspicious MacOS Firmware Activity

productmediumDisk Image Mounting Via Hdiutil - MacOS

▣