CVE-2021-30966: High severity tvos vulnerability

Q: What is CVE-2021-30966?

CVE-2021-30966 is a vulnerability in CFNetwork Proxies that allows user traffic to be leaked to a proxy server despite PAC configurations.

Q: What is the severity of CVE-2021-30966?

The severity of CVE-2021-30966 is high, with a severity value of 7.5.

Q: Which software versions are affected by CVE-2021-30966?

CVE-2021-30966 affects macOS Monterey 12.1, watchOS 8.3, iOS 15.2, iPadOS 15.2, and tvOS 15.2.

Q: What is the fix for CVE-2021-30966?

CVE-2021-30966 is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2, iPadOS 15.2, and tvOS 15.2.

Q: Where can I find more information about CVE-2021-30966?

More information about CVE-2021-30966 can be found at the following references: [link1], [link2], [link3].

Published Aug 24, 2021

Updated

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. User traffic might unexpectedly be leaked to a proxy server despite PAC configurations.

Other sources

CFNetwork Proxies. A logic issue was addressed with improved state management.

Credit

Michal Rajcan(Jamf), Matt Vlasach(Jamf)

Affected Software

10 affected componentsFixes available

Apple tvOS<15.2

15.2

Apple WatchOS<8.3

8.3

Apple macOS Monterey<12.1

12.1

Apple iOS<15.2

15.2

Apple iPadOS<15.2

15.2

Apple iPadOS<15.2

Apple iPhone OS<15.2

Apple macOS<12.1

Apple tvOS<15.2

Apple WatchOS<8.3

Event History

Aug 24, 2021

CVE Published

via MITRE·06:51 PM

Data Sourced

via MITRE·06:51 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

Peer vulnerabilities

Found alongside the following vulnerabilities.

CVE-2021-30960
CVE-2021-30966
CVE-2021-30926
CVE-2021-30942
CVE-2021-30962
CVE-2021-30957
CVE-2021-30958
CVE-2021-30945
CVE-2021-31013
CVE-2021-31000
CVE-2021-30939
CVE-2021-30916
CVE-2021-30937
CVE-2021-30927
CVE-2021-30980
CVE-2021-30949
CVE-2021-30993
CVE-2021-30955
CVE-2021-30995
CVE-2021-30968
CVE-2021-30947
CVE-2021-30944
CVE-2021-30934
CVE-2021-30936
CVE-2021-30951
CVE-2021-30952
CVE-2021-30984
CVE-2021-30953
CVE-2021-30954
CVE-2021-30943
CVE-2021-30946
CVE-2021-30767
CVE-2021-30964
CVE-2021-30987
CVE-2021-30950
CVE-2021-30986
CVE-2021-30935
CVE-2021-31007
CVE-2021-30977
CVE-2021-30981
CVE-2021-30996
CVE-2021-30982
CVE-2021-30976
CVE-2021-30990
CVE-2021-31009
CVE-2021-30971
CVE-2021-30973
CVE-2021-30929
CVE-2021-30979
CVE-2021-30940
CVE-2021-30941
CVE-2021-30975
CVE-2021-30972
CVE-2021-30970
CVE-2021-30965
CVE-2021-30938
CVE-2021-30956
CVE-2021-30992
CVE-2021-30983
CVE-2021-30985
CVE-2021-30991
CVE-2021-30998
CVE-2021-30997
CVE-2021-30967
CVE-2021-30988
CVE-2021-30932
CVE-2021-30948

Frequently Asked Questions

What is CVE-2021-30966?

CVE-2021-30966 is a vulnerability in CFNetwork Proxies that allows user traffic to be leaked to a proxy server despite PAC configurations.

What is the severity of CVE-2021-30966?

The severity of CVE-2021-30966 is high, with a severity value of 7.5.

Which software versions are affected by CVE-2021-30966?

CVE-2021-30966 affects macOS Monterey 12.1, watchOS 8.3, iOS 15.2, iPadOS 15.2, and tvOS 15.2.

What is the fix for CVE-2021-30966?

CVE-2021-30966 is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2, iPadOS 15.2, and tvOS 15.2.

Where can I find more information about CVE-2021-30966?

More information about CVE-2021-30966 can be found at the following references: [link1], [link2], [link3].

CVE-2021-30966: High severity tvos vulnerability

Other sources

Credit

Affected Software

Event History

Parent advisories

Peer vulnerabilities

Don't miss critical vulnerabilities

Frequently Asked Questions

What is CVE-2021-30966?

What is the severity of CVE-2021-30966?

Which software versions are affected by CVE-2021-30966?

What is the fix for CVE-2021-30966?

Where can I find more information about CVE-2021-30966?

Company

Resources

Contact