CVE-2021-30880
Published Aug 24, 2021
·Updated
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.0.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. Processing a maliciously crafted AppleScript binary may result in unexpected application termination or disclosure of process memory.
Credit
Jeremy Brown, hjy79425575
Affected Software
18 affected componentsFixes available
Apple macOS Big Sur<11.6.1
11.6.1
Apple Catalina
Apple macOS Monterey<12.0.1
12.0.1
Apple iOS and macOS>=10.15<=10.15.6
Apple iOS and macOS=10.15.7
Apple iOS and macOS=10.15.7-security_update_2020
Apple iOS and macOS=10.15.7-security_update_2020-001
Apple iOS and macOS=10.15.7-security_update_2020-005
Apple iOS and macOS=10.15.7-security_update_2020-007
Apple iOS and macOS=10.15.7-security_update_2021-001
Apple iOS and macOS=10.15.7-security_update_2021-002
Apple iOS and macOS=10.15.7-security_update_2021-003
Apple iOS and macOS=10.15.7-security_update_2021-004
Apple iOS and macOS=10.15.7-security_update_2021-005
Apple iOS and macOS=10.15.7-security_update_2021-006
Apple iOS and macOS=10.15.7-supplemental_update
Apple macOS>=11.0<11.6.1
Apple macOS>=12.0<12.0.1
Remediation
Patch Available
Patch Available
Patch Available
Event History
Aug 24, 2021
CVE Published
via MITRE·06:49 PM
Data Sourced
via MITRE·06:49 PM
DescriptionWeakness
Frequently Asked Questions
1
What is CVE-2021-30880?
CVE-2021-30880 is a vulnerability in AppleScript that allows an out-of-bounds read.
2
How was CVE-2021-30880 addressed?
CVE-2021-30880 was addressed with improved bounds checking.
3
Which software versions are affected by CVE-2021-30880?
CVE-2021-30880 affects macOS Big Sur versions up to and including 11.6.1, Apple Catalina, and macOS Monterey versions up to and including 12.0.1.
4
What is the severity of CVE-2021-30880?
The severity of CVE-2021-30880 is not specified.
5
How do I fix CVE-2021-30880?
To fix CVE-2021-30880, update your operating system to the latest version provided by Apple.