CVE-2021-30654
CVE-2021-30654
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
08 Sep 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
This issue was addressed by removing additional entitlements. This issue is fixed in GarageBand 10.4.3. A local attacker may be able to read sensitive information.
Affected products
Apple · GarageBandReferences
https://support.apple.com/en-us/HT212299