Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.MACOS_HT212602.NASL
HistoryJul 23, 2021 - 12:00 a.m.

macOS 11.x < 11.5 (HT212602)

2021-07-2300:00:00
This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
34
JSON

The remote host is running a version of macOS / Mac OS X that is 11.x prior to 11.5 Big Sur. It is, therefore, affected by multiple vulnerabilities including the following:

  • An application may be able to execute arbitrary code with kernel privileges (CVE-2021-30805)

  • Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution (CVE-2021-30790)

  • A local attacker may be able to cause unexpected application termination or arbitrary code execution (CVE-2021-30781)

Note that Nessus has not tested for this issue but has instead relied only on the operating system’s self-reported version number.

#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(152038);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/09/20");

  script_cve_id(
    "CVE-2021-3518",
    "CVE-2021-30748",
    "CVE-2021-30758",
    "CVE-2021-30759",
    "CVE-2021-30760",
    "CVE-2021-30765",
    "CVE-2021-30766",
    "CVE-2021-30768",
    "CVE-2021-30772",
    "CVE-2021-30774",
    "CVE-2021-30775",
    "CVE-2021-30776",
    "CVE-2021-30777",
    "CVE-2021-30778",
    "CVE-2021-30779",
    "CVE-2021-30780",
    "CVE-2021-30781",
    "CVE-2021-30782",
    "CVE-2021-30783",
    "CVE-2021-30784",
    "CVE-2021-30785",
    "CVE-2021-30786",
    "CVE-2021-30787",
    "CVE-2021-30788",
    "CVE-2021-30789",
    "CVE-2021-30790",
    "CVE-2021-30791",
    "CVE-2021-30792",
    "CVE-2021-30793",
    "CVE-2021-30795",
    "CVE-2021-30796",
    "CVE-2021-30797",
    "CVE-2021-30798",
    "CVE-2021-30799",
    "CVE-2021-30803",
    "CVE-2021-30805"
  );
  script_xref(name:"APPLE-SA", value:"HT212602");
  script_xref(name:"APPLE-SA", value:"APPLE-SA-2021-07-21");
  script_xref(name:"IAVA", value:"2021-A-0349-S");

  script_name(english:"macOS 11.x < 11.5 (HT212602)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is missing a macOS security update.");
  script_set_attribute(attribute:"description", value:
"The remote host is running a version of macOS / Mac OS X that is 11.x prior to 11.5 Big Sur. It is, therefore,
affected by multiple vulnerabilities including the following:

  - An application may be able to execute arbitrary code with kernel privileges (CVE-2021-30805)

  - Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution
    (CVE-2021-30790)

  - A local attacker may be able to cause unexpected application termination or arbitrary code execution
    (CVE-2021-30781)

Note that Nessus has not tested for this issue but has instead relied only on the operating system's self-reported
version number.");
  script_set_attribute(attribute:"see_also", value:"https://support.apple.com/en-us/HT212602");
  script_set_attribute(attribute:"solution", value:
"Upgrade to macOS 11.5 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-30805");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/07/21");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/07/21");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/07/23");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:macos");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_ports("Host/MacOSX/Version", "Host/local_checks_enabled", "Host/MacOSX/packages/boms");

  exit(0);
}

include('vcf.inc');
include('vcf_extras_apple.inc');

var app_info = vcf::apple::macos::get_app_info();
var constraints = [{ 'min_version' : '11.0', 'fixed_version' : '11.5', 'fixed_display' : 'macOS Big Sur 11.5' }];

vcf::apple::macos::check_version_and_report(
  app_info:app_info,
  constraints:constraints,
  severity:SECURITY_HOLE
);
VendorProductVersionCPE
applemac_os_xcpe:/o:apple:mac_os_x
applemacoscpe:/o:apple:macos

References

Related

openvas 20
apple 10
nessus 29
threatpost 1
cve 36
prion 36
zdi 11
mageia 2
ubuntucve 6
cnvd 4
ubuntu 1
debian 2
redhatcve 5
zdt 1
debiancve 5
suse 3
osv 5
fedora 2
alpinelinux 5
packetstorm 1
ibm 2
cbl_mariner 1
github 1
veracode 1
qualysblog 1
archlinux 2
amazon 1
oraclelinux 1
almalinux 1
rocky 1
redhat 1
photon 1
openvas
openvas
Apple Mac OS X Security Update (HT212602)
2022-09-22 00:00:00
Apple Mac OS X Security Update (HT212603)
2022-09-22 00:00:00
Apple Mac OS X Security Update (HT212600)
2022-09-22 00:00:00
apple
apple
About the security content of macOS Big Sur 11.5
2021-07-21 00:00:00
About the security content of Security Update 2021-005 Mojave
2021-07-21 00:00:00
About the security content of Security Update 2021-004 Catalina
2021-07-21 00:00:00
nessus
nessus
macOS 10.15.x < Catalina Security Update 2021-004 Catalina (HT212600)
2021-07-23 00:00:00
macOS 10.14.x < 10.14.6 Mojave Security Update 2021-005 (HT212603)
2021-07-23 00:00:00
Apple iTunes < 12.11.4 Multiple Vulnerabilities (uncredentialed check)
2021-08-23 00:00:00
threatpost
threatpost
Apple Issues Urgent iPhone Updates; None for Pegasus Zero-Day
2021-07-22 16:18:25
cve
cve
CVE-2021-30768
2021-09-08 14:15:00
CVE-2021-30793
2021-09-08 14:15:00
CVE-2021-30803
2021-09-08 14:15:00
prion
prion
Code injection
2021-09-08 14:15:00
Design/Logic Flaw
2021-09-08 14:15:00
Input validation
2021-09-08 14:15:00
zdi
zdi
Apple macOS ModelIO ABC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2021-08-05 00:00:00
Apple macOS libType1Scaler PFB Font Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
2021-08-05 00:00:00
Apple macOS ModelIO ABC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
2021-08-05 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerabilities
2021-08-14 17:00:09
Updated libxml2 packages fix security vulnerabilities
2021-05-19 22:29:59
ubuntucve
ubuntucve
CVE-2021-30799
2021-07-27 00:00:00
CVE-2021-30758
2021-07-27 00:00:00
CVE-2021-30797
2021-07-27 00:00:00
cnvd
cnvd
Apple macOS Big Sur Buffer Overflow Vulnerability (CNVD-2021-102842)
2021-07-23 00:00:00
Apple iOS and macOS Big Sur Competition Condition Issue Vulnerability
2022-04-01 00:00:00
Apple macOS Big Sur Buffer Overflow Vulnerability (CNVD-2021-102841)
2021-07-23 00:00:00
ubuntu
ubuntu
WebKitGTK vulnerabilities
2021-07-28 00:00:00
debian
debian
[SECURITY] [DSA 4945-1] webkit2gtk security update
2021-07-28 18:56:16
[SECURITY] [DLA 2653-1] libxml2 security update
2021-05-10 12:31:54
redhatcve
redhatcve
CVE-2021-30795
2021-07-28 13:54:00
CVE-2021-30799
2021-07-28 14:20:22
CVE-2021-30758
2021-07-28 13:53:55
zdt
zdt
WebKit WebCore::FrameLoader::PolicyChecker::checkNavigationPolicy Heap Use-After-Free Vulnerability
2021-08-19 00:00:00
debiancve
debiancve
CVE-2021-30758
2021-09-08 14:15:00
CVE-2021-30799
2021-09-08 14:15:00
CVE-2021-30797
2021-09-08 14:15:00
suse
suse
Security update for webkit2gtk3 (important)
2021-08-10 00:00:00
Security update for webkit2gtk3 (important)
2021-08-03 00:00:00
Security update for libxml2 (moderate)
2021-05-09 00:00:00
osv
osv
webkit2gtk vulnerabilities
2021-07-28 16:33:22
webkit2gtk - security update
2021-07-28 00:00:00
Nokogiri Implements libxml2 version vulnerable to use-after-free
2022-05-24 19:02:44
fedora
fedora
[SECURITY] Fedora 33 Update: webkit2gtk3-2.32.3-1.fc33
2021-08-08 01:08:31
[SECURITY] Fedora 34 Update: webkit2gtk3-2.32.3-1.fc34
2021-07-29 01:09:31
alpinelinux
alpinelinux
CVE-2021-30797
2021-09-08 14:15:00
CVE-2021-30799
2021-09-08 14:15:00
CVE-2021-30758
2021-09-08 14:15:00
packetstorm
packetstorm
WebKit WebCore::FrameLoader::PolicyChecker::checkNavigationPolicy Heap Use-After-Free
2021-08-19 00:00:00
ibm
ibm
Security Bulletin: libXml2 used by IBM InfoSphere Identity Insight has a potential vulnerability (CVE-2021-3518)
2021-09-15 22:14:25
Security Bulletin: Vulnerabilities in IBM Java Runtime and libxml2 affecting Tivoli Netcool/OMNIbus (Multiple CVEs)
2021-09-30 12:44:04
cbl_mariner
cbl_mariner
CVE-2021-3518 affecting package libxml2 2.9.10-4
2021-06-09 03:50:32
github
github
Nokogiri Implements libxml2 version vulnerable to use-after-free
2022-05-24 19:02:44
veracode
veracode
Remote Code Execution (RCE)
2021-05-08 15:20:45
qualysblog
qualysblog
iOS and iPadOS 14.7 and 14.7.1 Security Update: Discover Vulnerabilities and Take Remote Response Action Using VMDR for Mobile Devices
2021-07-28 19:41:48
archlinux
archlinux
[ASA-202107-68] wpewebkit: multiple issues
2021-07-27 00:00:00
[ASA-202107-67] webkit2gtk: multiple issues
2021-07-27 00:00:00
amazon
amazon
Medium: libxml2
2021-07-01 01:03:00
oraclelinux
oraclelinux
GNOME security, bug fix, and enhancement update
2021-11-16 00:00:00
almalinux
almalinux
Moderate: GNOME security, bug fix, and enhancement update
2021-11-09 09:15:15
rocky
rocky
GNOME security, bug fix, and enhancement update
2021-11-09 09:15:15
redhat
redhat
(RHSA-2021:4381) Moderate: GNOME security, bug fix, and enhancement update
2021-11-09 09:15:15
photon
photon
Important Photon OS Security Update - PHSA-2021-0399
2021-05-31 00:00:00
JSON
Related for MACOS_HT212602.NASL
openvas20apple10nessus29threatpost1cve36prion36zdi11mageia2ubuntucve6cnvd4ubuntu1debian2redhatcve5zdt1debiancve5suse3osv5fedora2alpinelinux5packetstorm1ibm2cbl_mariner1github1veracode1qualysblog1archlinux2amazon1oraclelinux1almalinux1rocky1redhat1photon1