Lucene search

K

macOS 11.x < 11.5.1 (HT212622)

πŸ—“οΈΒ 28 Jul 2021Β 00:00:00Reported byΒ This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.TypeΒ 
nessus
Β nessus
πŸ”—Β www.tenable.comπŸ‘Β 25Β Views

The remote host is running a version of macOS / Mac OS X that is 11.x prior to 11.5.1 Big Sur. It is affected by a vulnerability in IOMobileFrameBuffer. An application may be able to execute arbitrary code with kernel privileges

Show more
Related
Refs
Code
ReporterTitlePublishedViews
Family
CVE
CVE-2021-30807
19 Oct 202114:15
–cve
Apple
About the security content of iOS 14.7.1 and iPadOS 14.7.1
26 Jul 202100:00
–apple
Apple
About the security content of macOS Big Sur 11.5.1
26 Jul 202100:00
–apple
Apple
About the security content of watchOS 7.6.1
29 Jul 202100:00
–apple
Prion
Memory corruption
19 Oct 202114:15
–prion
CISA KEV Catalog
Apple Multiple Products Memory Corruption Vulnerability
3 Nov 202100:00
–cisa_kev
ThreatPost
Apple Patches Actively Exploited Zero-Day in iOS, MacOS
27 Jul 202113:36
–threatpost
ThreatPost
Apple Releases Urgent iOS Updates to Patch New Zero-Day Bug
12 Oct 202115:17
–threatpost
NVD
CVE-2021-30807
19 Oct 202114:15
–nvd
GithubExploit
Exploit for Out-of-bounds Write in Apple Ipad Os
9 Oct 202120:11
–githubexploit
Rows per page
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(152129);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/05/28");

  script_cve_id("CVE-2021-30807");
  script_xref(name:"APPLE-SA", value:"HT212622");
  script_xref(name:"APPLE-SA", value:"APPLE-SA-2021-07-26");
  script_xref(name:"IAVA", value:"2021-A-0356-S");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2021/11/17");

  script_name(english:"macOS 11.x < 11.5.1 (HT212622)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is missing a macOS security update.");
  script_set_attribute(attribute:"description", value:
"The remote host is running a version of macOS / Mac OS X that is 11.x prior to 11.5.1 Big Sur. It is, therefore,
affected by a vulnerability in IOMobileFrameBuffer. An application may be able to execute arbitrary code with kernel
privileges. Apple is aware of a report that this issue may have been actively exploited.

Note that Nessus has not tested for this issue but has instead relied only on the operating system's self-reported
version number.");
  script_set_attribute(attribute:"see_also", value:"https://support.apple.com/en-us/HT212622");
  script_set_attribute(attribute:"solution", value:
"Upgrade to macOS 11.5.1 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-30807");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/07/26");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/07/26");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/07/28");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x:11.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:macos:11.0");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_ports("Host/MacOSX/Version", "Host/local_checks_enabled", "Host/MacOSX/packages/boms");

  exit(0);
}

include('vcf.inc');
include('vcf_extras_apple.inc');

var app_info = vcf::apple::macos::get_app_info();
var constraints = [{ 'min_version' : '11.0', 'fixed_version' : '11.5.1', 'fixed_display' : 'macOS Big Sur 11.5.1' }];

vcf::apple::macos::check_version_and_report(
  app_info:app_info,
  constraints:constraints,
  severity:SECURITY_HOLE
);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
28 Jul 2021 00:00Current
8.8High risk
Vulners AI Score8.8
CVSS29.3
CVSS37.8
EPSS0.001
25
.json
Report