Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.MACOS_HT212869.NASL
HistoryOct 29, 2021 - 12:00 a.m.

macOS 12.x < 12.0.1 (HT212869)

2021-10-2900:00:00
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
46
JSON

The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.0.1 Monterey. It is, therefore, affected by multiple vulnerabilities including the following:

  • Exploitation of this vulnerability may lead to arbitrary code execution with kernel privileges. (CVE-2021-30899, CVE-2021-30824, CVE-2021-30901, CVE-2021-30821, CVE-2021-30883, CVE-2021-30886, CVE-2021-30909, CVE-2021-30916, CVE-2021-30868)

  • Exploitation of this vulnerability may lead to elevation of privileges. (CVE-2021-30873, CVE-2021-30907, CVE-2021-30906)

  • Exploitation of this vulnerability may lead to information disclosure. ( CVE-2021-30876, CVE-2021-30879, CVE-2021-30906, CVE-2021-30905, CVE-2021-30895, CVE-2021-30896, CVE-2021-30910, CVE-2021-30911, CVE-2021-30920, CVE-2021-30912, CVE-2021-30888)

Note that Nessus has not tested for this issue but has instead relied only on the operating system’s self-reported version number.

#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(154711);
  script_version("1.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/04/25");

  script_cve_id(
    "CVE-2021-30813",
    "CVE-2021-30821",
    "CVE-2021-30823",
    "CVE-2021-30824",
    "CVE-2021-30833",
    "CVE-2021-30861",
    "CVE-2021-30864",
    "CVE-2021-30868",
    "CVE-2021-30873",
    "CVE-2021-30876",
    "CVE-2021-30877",
    "CVE-2021-30879",
    "CVE-2021-30880",
    "CVE-2021-30881",
    "CVE-2021-30883",
    "CVE-2021-30886",
    "CVE-2021-30887",
    "CVE-2021-30888",
    "CVE-2021-30889",
    "CVE-2021-30890",
    "CVE-2021-30892",
    "CVE-2021-30895",
    "CVE-2021-30896",
    "CVE-2021-30899",
    "CVE-2021-30901",
    "CVE-2021-30903",
    "CVE-2021-30905",
    "CVE-2021-30906",
    "CVE-2021-30907",
    "CVE-2021-30908",
    "CVE-2021-30909",
    "CVE-2021-30910",
    "CVE-2021-30911",
    "CVE-2021-30912",
    "CVE-2021-30913",
    "CVE-2021-30915",
    "CVE-2021-30916",
    "CVE-2021-30917",
    "CVE-2021-30919",
    "CVE-2021-30920"
  );
  script_xref(name:"APPLE-SA", value:"HT212869");
  script_xref(name:"APPLE-SA", value:"APPLE-SA-2021-10-26-3");
  script_xref(name:"IAVA", value:"2021-A-0505-S");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/06/13");

  script_name(english:"macOS 12.x < 12.0.1 (HT212869)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is missing a macOS security update.");
  script_set_attribute(attribute:"description", value:
"The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.0.1 Monterey. It is, therefore,
affected by multiple vulnerabilities including the following:

  - Exploitation of this vulnerability may lead to arbitrary code execution with kernel privileges. (CVE-2021-30899, 
      CVE-2021-30824, CVE-2021-30901, CVE-2021-30821, CVE-2021-30883, CVE-2021-30886, CVE-2021-30909, CVE-2021-30916, 
      CVE-2021-30868)

  - Exploitation of this vulnerability may lead to elevation of privileges. (CVE-2021-30873, CVE-2021-30907, 
      CVE-2021-30906)

  - Exploitation of this vulnerability may lead to information disclosure. ( CVE-2021-30876, CVE-2021-30879, 
      CVE-2021-30906, CVE-2021-30905, CVE-2021-30895, CVE-2021-30896, CVE-2021-30910, CVE-2021-30911, CVE-2021-30920,
      CVE-2021-30912, CVE-2021-30888)

Note that Nessus has not tested for this issue but has instead relied only on the operating system's self-reported
version number.");
  script_set_attribute(attribute:"see_also", value:"https://support.apple.com/en-gb/HT212869");
  script_set_attribute(attribute:"solution", value:
"Upgrade to macOS 12.0.1 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-30916");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2021-30889");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/10/25");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/10/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/10/29");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:macos");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_ports("Host/MacOSX/Version", "Host/local_checks_enabled", "Host/MacOSX/packages/boms");

  exit(0);
}

include('vcf.inc');
include('vcf_extras_apple.inc');

var app_info = vcf::apple::macos::get_app_info();
var constraints = [{'min_version': '12.0', 'fixed_version': '12.0.1', 'fixed_display': 'macOS Monterey 12.0.1'}];

vcf::apple::macos::check_version_and_report(
  app_info:app_info,
  constraints:constraints,
  severity:SECURITY_HOLE
);
VendorProductVersionCPE
applemac_os_xcpe:/o:apple:mac_os_x
applemacoscpe:/o:apple:macos

References

Related

nessus 18
apple 13
malwarebytes 3
osv 7
debian 2
ubuntu 1
mageia 1
prion 43
cve 43
thn 5
zdi 3
debiancve 8
attackerkb 1
alpinelinux 8
redhatcve 5
veracode 2
ubuntucve 8
cisa 1
threatpost 5
cisa_kev 1
cnvd 2
mmpc 2
mssecure 3
fedora 2
oraclelinux 1
almalinux 1
redhat 1
rocky 1
trellix 2
suse 2
krebs 1
kaspersky 2
gentoo 1
nessus
nessus
macOS 11.x < 11.6.1 (HT212872)
2021-10-29 00:00:00
macOS 10.15.x < Catalina Security Update 2021-007 Catalina (HT212871)
2021-11-01 00:00:00
Debian DSA-5030-1 : webkit2gtk - security update
2021-12-24 00:00:00
apple
apple
About the security content of macOS Big Sur 11.6.1
2021-10-25 00:00:00
About the security content of Security Update 2021-007 Catalina
2021-10-25 00:00:00
About the security content of tvOS 15.1
2021-10-25 00:00:00
malwarebytes
malwarebytes
Update now! Apple patches bugs in iOS and iPadOS
2021-10-27 12:23:08
Update now! Apple patches another actively used zero-day
2022-01-27 21:56:12
Hermit spyware is deployed with the help of a victim’s ISP
2022-06-29 10:03:54
osv
osv
webkit2gtk vulnerabilities
2022-01-06 14:54:22
webkit2gtk - security update
2021-12-23 00:00:00
wpewebkit - security update
2021-12-23 00:00:00
debian
debian
[SECURITY] [DSA 5031-1] wpewebkit security update
2021-12-23 22:35:46
[SECURITY] [DSA 5030-1] webkit2gtk security update
2021-12-23 22:35:28
ubuntu
ubuntu
WebKitGTK vulnerabilities
2022-01-06 00:00:00
mageia
mageia
Updated webkit2 packages fix security vulnerability
2021-12-24 00:01:45
prion
prion
Race condition
2021-08-24 19:15:00
Information disclosure
2021-08-24 19:15:00
Memory corruption
2021-08-24 19:15:00
cve
cve
CVE-2021-30880
2021-08-24 19:15:00
CVE-2021-30913
2021-08-24 19:15:00
CVE-2021-30895
2021-08-24 19:15:00
thn
thn
New 'Shrootless' Bug Could Let Attackers Install Rootkit on macOS Systems
2021-10-29 11:03:00
Apple Pays $100,500 Bounty to Hacker Who Found Way to Hack MacBook Webcam
2022-01-31 06:07:00
Expert Details macOS Bug That Could Let Malware Bypass Gatekeeper Security
2021-12-24 13:07:00
zdi
zdi
Apple macOS ModelIO ABC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
2021-11-30 00:00:00
Apple macOS CoreGraphics PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2022-02-16 00:00:00
Apple macOS AudioCodecs LOAS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
2021-11-30 00:00:00
debiancve
debiancve
CVE-2021-30888
2021-08-24 19:15:00
CVE-2021-30890
2021-08-24 19:15:00
CVE-2021-30823
2021-10-28 19:15:00
attackerkb
attackerkb
CVE-2021-30883
2021-08-24 00:00:00
alpinelinux
alpinelinux
CVE-2021-30823
2021-10-28 19:15:00
CVE-2021-30890
2021-08-24 19:15:00
CVE-2021-30888
2021-08-24 19:15:00
redhatcve
redhatcve
CVE-2021-30887
2021-12-20 19:22:40
CVE-2021-30888
2021-12-20 19:57:39
CVE-2021-30889
2021-12-20 20:02:07
veracode
veracode
Information Disclosure
2021-12-23 18:32:14
Cross-site Scripting (XSS)
2021-12-23 18:35:12
ubuntucve
ubuntucve
CVE-2021-30888
2021-08-24 00:00:00
CVE-2021-30889
2021-08-24 00:00:00
CVE-2021-30890
2021-08-24 00:00:00
cisa
cisa
Apple Releases Security Update to Address CVE-2021-30883
2021-10-12 00:00:00
threatpost
threatpost
Apple Patches Critical iOS Bugs; One Under Attack
2021-10-27 16:14:24
Apple macOS Flaw Allows Kernel-Level Compromise
2021-11-02 15:50:51
Apple Releases Urgent iOS Updates to Patch New Zero-Day Bug
2021-10-12 15:17:38
cisa_kev
cisa_kev
Apple Multiple Products Memory Corruption Vulnerability
2022-05-23 00:00:00
cnvd
cnvd
Apple tvOS Information Disclosure Vulnerability (CNVD-2021-84234)
2021-11-01 00:00:00
Adobe Safari cross-site scripting vulnerability
2021-11-01 00:00:00
mmpc
mmpc
Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection
2021-10-28 16:00:13
Uncovering a macOS App Sandbox escape vulnerability: A deep dive into CVE-2022-26706
2022-07-13 16:00:00
mssecure
mssecure
Uncovering a macOS App Sandbox escape vulnerability: A deep dive into CVE-2022-26706
2022-07-13 16:00:00
Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection
2021-10-28 16:00:13
New macOS vulnerability, Migraine, could bypass System Integrity Protection
2023-05-30 16:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: webkit2gtk3-2.34.4-2.fc35
2022-01-23 01:45:32
[SECURITY] Fedora 34 Update: webkit2gtk3-2.34.4-1.fc34
2022-02-06 02:02:28
oraclelinux
oraclelinux
webkit2gtk3 security, bug fix, and enhancement update
2022-05-17 00:00:00
almalinux
almalinux
Moderate: webkit2gtk3 security, bug fix, and enhancement update
2022-05-10 06:24:27
redhat
redhat
(RHSA-2022:1777) Moderate: webkit2gtk3 security, bug fix, and enhancement update
2022-05-10 06:24:27
rocky
rocky
webkit2gtk3 security, bug fix, and enhancement update
2022-05-10 06:24:27
trellix
trellix
The Bug Report – October Edition
2021-11-02 00:00:00
The Bug Report – October Edition
2021-11-02 00:00:00
suse
suse
Security update for webkit2gtk3 (important)
2022-02-17 00:00:00
Security update for webkit2gtk3 (important)
2022-01-25 00:00:00
krebs
krebs
Patch Tuesday, October 2021 Edition
2021-10-12 19:52:09
kaspersky
kaspersky
KLA12357 Multiple vulnerabilities in Apple iCloud
2021-11-10 00:00:00
KLA12293 Multiple vulnerabilities in Apple iTunes
2021-09-20 00:00:00
gentoo
gentoo
WebkitGTK+: Multiple vulnerabilities
2022-02-01 00:00:00
JSON
Related for MACOS_HT212869.NASL
nessus18apple13malwarebytes3osv7debian2ubuntu1mageia1prion43cve43thn5zdi3debiancve8attackerkb1alpinelinux8redhatcve5veracode2ubuntucve8cisa1threatpost5cisa_kev1cnvd2mmpc2mssecure3fedora2oraclelinux1almalinux1redhat1rocky1trellix2suse2krebs1kaspersky2gentoo1