CVE-2021-1797
Description
The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A local user may be able to read arbitrary files.
CWE
- (none)
Affected
- Apple / iOS and iPadOS — v=unspecified <14.4 [affected]
- Apple / macOS — v=unspecified <11.2 [affected]
- Apple / macOS — v=unspecified <7.3 [affected]
- Apple / macOS — v=unspecified <14.4 [affected]
CVSS
- (none)
References
- https://support.apple.com/en-us/HT212147 x_refsource_MISC
- https://support.apple.com/en-us/HT212146 x_refsource_MISC
- https://support.apple.com/en-us/HT212148 x_refsource_MISC
- https://support.apple.com/en-us/HT212149 x_refsource_MISC
- https://support.apple.com/kb/HT212326 x_refsource_CONFIRM
- https://support.apple.com/kb/HT212327 x_refsource_CONFIRM
- http://seclists.org/fulldisclosure/2021/Apr/51 mailing-list, x_refsource_FULLDISC
Source
cvelistV5-main/cves/2021/1xxx/CVE-2021-1797.json