← back
CVE-2021-30721

CVE-2021-30721

EPSS 23.6%
In short

A flaw in how macOS handles file paths could allow someone on the same network to access sensitive information about users. Apple fixed this by improving how the system validates paths.

Technical detail

A path handling vulnerability in macOS allows an attacker in a privileged network position to leak sensitive user information through improper validation of file paths. The issue affects macOS Big Sur, Catalina, and Mojave, requiring network-level access to exploit. Remediation involves patching to Big Sur 11.4 or the respective security updates for older versions.

Summary generated and translated by AI from the official description.
A path handling issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. An attacker in a privileged network position may be able to leak sensitive user information.
Affected products
Apple · macOS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.apple.com/en-us/HT212529https://support.apple.com/en-us/HT212530https://support.apple.com/en-us/HT212531