CVE-2021-30855
24.08.2021, 19:15
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, iOS 15 and iPadOS 15, watchOS 8, macOS Big Sur 11.6. An application may be able to access restricted files.
| Vendor | Product | Version |
|---|---|---|
| apple | ipados | 𝑥 < 14.8 |
| apple | iphone_os | 𝑥 < 14.8 |
| apple | mac_os_x | 𝑥 < 10.15.7 |
| apple | mac_os_x | 10.15.7 |
| apple | mac_os_x | 10.15.7:security_update_2020-001 |
| apple | mac_os_x | 10.15.7:security_update_2021-001 |
| apple | mac_os_x | 10.15.7:security_update_2021-002 |
| apple | mac_os_x | 10.15.7:security_update_2021-003 |
| apple | mac_os_x | 10.15.7:security_update_2021-004 |
| apple | mac_os_x | 10.15.7:supplemental_update |
| apple | macos | 𝑥 < 11.6 |
| apple | tvos | 𝑥 < 15.0 |
| apple | watchos | 𝑥 < 8.0 |
𝑥
= Vulnerable software versions
References