Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:40 p.m.9 views

CVE-2021-30892

An inherited permissions issue was addressed with additional restrictions. This issue is fixed in macOS Monterey 12.0.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. A malicious application may be able to modify protected parts of the file system...

5.5CVSS6.2AI score0.10352EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2023/05/31 11:57 a.m.71 views

Microsoft Details Critical Apple macOS Vulnerability Allowing SIP Protection Bypass

Microsoft has shared details of a now-patched flaw in Apple macOS that could be abused by threat actors with root access to bypass security enforcements and perform arbitrary actions on affected devices. Specifically, the flaw – dubbed Migraine and tracked as CVE-2023-32369 – could be abused to g...

7.8CVSS8AI score0.13453EPSS
Exploits0
ThreatPost
ThreatPost
added 2021/11/02 3:50 p.m.50 views

Apple macOS Flaw Allows Kernel-Level Compromise

Apple has patched a vulnerability in macOS can allow attackers to bypass a key OS protection and install a malicious rootkit to perform arbitrary operations on a device, researchers from Microsoft have discovered. The problem—dubbed “Shrootless”–is associated with a security technology called...

5.5CVSS7.6AI score0.10352EPSS
Exploits0References5
Circl
Circl
added 2021/10/29 11:33 a.m.5 views

CVE-2021-30892

creationtimestamp| type| source ---|---|--- 2021-10-29 11:33:01+00:00| seen| https://t.me/CyberSecurityTechnologies/4623 2021-10-29 13:05:15+00:00| seen| https://t.me/thehackernews/1621 2021-10-29 17:05:17+00:00| seen| https://t.me/cKure/7812 2021-11-08 11:07:01+00:00| published-proof-of-concept|...

5.5CVSS6.4AI score0.10352EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2021/10/29 11:3 a.m.53 views

New 'Shrootless' Bug Could Let Attackers Install Rootkit on macOS Systems

Microsoft on Thursday disclosed details of a new vulnerability that could allow an attacker to bypass security restrictions in macOS and take complete control of the device to perform arbitrary operations on the device without getting flagged by traditional security solutions. Dubbed "Shrootless"...

5.5CVSS1AI score0.10352EPSS
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/10/28 4:0 p.m.81 views

Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection

Microsoft has discovered a vulnerability that could allow an attacker to bypass System Integrity Protection SIP in macOS and perform arbitrary operations on a device. We also found a similar technique that could allow an attacker to elevate their privileges to root an affected device. We shared...

4.3CVSS6.9AI score0.10352EPSS
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/10/28 4:0 p.m.82 views

Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection

Microsoft has discovered a vulnerability that could allow an attacker to bypass System Integrity Protection SIP in macOS and perform arbitrary operations on a device. We also found a similar technique that could allow an attacker to elevate their privileges to root an affected device. We shared...

4.3CVSS6.9AI score0.10352EPSS
Exploits0
CVE
CVE
added 2021/08/24 6:49 p.m.98 views

CVE-2021-30892

CVE-2021-30892 is a macOS SIP bypass exposed via Apple-signed post-install flows and the SystemMigration stack. The authenticated bystander code-paths can enable a child process to inherit or re-enable code-signing/SIP checks, allowing manipulation of SIP-protected files and parts of the filesyst...

5.5CVSS5.6AI score0.10352EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder