← back
CVE-2021-30657

CVE-2021-30657

CVSS 5.5 MEDIUMEPSS 68.5%● KEVCWE-862
In short

A flaw in macOS allows a malicious app to bypass Gatekeeper, Apple's security check that prevents untrusted software from running. An attacker could trick your system into running harmful code that Gatekeeper should have blocked.

Technical detail

A logic vulnerability in macOS state management allows a malicious application to circumvent Gatekeeper's code-signing verification. The attack requires local execution context and improves attacker's capability to run unsigned or revoked code; Apple confirmed active exploitation in the wild.

Summary generated and translated by AI from the official description.
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina. A malicious application may bypass Gatekeeper checks. Apple is aware of a report that this issue may have been actively exploited..
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Affected products
Apple · macOS
public PoCs found1
githubgithub.com/shubham0d/CVE-2021-3065729
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.apple.com/en-us/HT212325https://support.apple.com/en-us/HT212326https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-30657