A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina. A malicious application may bypass Gatekeeper checks.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/164375/Gatekeeper-Bypass-Proof-Of-Concept.html | Exploit Third Party Advisory VDB Entry |
https://support.apple.com/en-us/HT212325 | Vendor Advisory |
https://support.apple.com/en-us/HT212326 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
07 Oct 2021, 17:55
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) http://packetstormsecurity.com/files/164375/Gatekeeper-Bypass-Proof-Of-Concept.html - Exploit, Third Party Advisory, VDB Entry |
04 Oct 2021, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Sep 2021, 13:16
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 4.3
v3 : 5.5 |
16 Sep 2021, 16:56
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:apple:mac_os_x:10.15.7:supplemental_update:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-007:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-005:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.15.6:-:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.15.6:supplemental_update:*:*:*:*:*:* |
|
References | (MISC) https://support.apple.com/en-us/HT212325 - Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT212326 - Vendor Advisory | |
CWE | NVD-CWE-noinfo | |
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
08 Sep 2021, 15:30
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-09-08 15:15
Updated : 2023-12-10 14:09
NVD link : CVE-2021-1810
Mitre link : CVE-2021-1810
CVE.ORG link : CVE-2021-1810
JSON object : View
Products Affected
apple
- macos
- mac_os_x
CWE