Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:27 p.m.7 views

CVE-2021-30657

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina. A malicious application may bypass Gatekeeper checks. Apple is aware of a report that this issue may have been actively exploited...

5.5CVSS6.3AI score0.68531EPSS
Exploits5References1
GithubExploit
GithubExploit
added 2021/11/07 6:33 p.m.356 views

Exploit for Missing Authorization in Apple Mac_Os_X

CVE-2021-30657 A simple POC for CVE-2021-30657 affecting MacOS...

5.5CVSS5.9AI score0.68531EPSS
Exploits5
CVE
CVE
added 2021/09/08 2:49 p.m.1124 views

CVE-2021-30657

CVE-2021-30657 is a Gatekeeper bypass in macOS caused by a logic/state-management issue. The vulnerability could allow a malicious, downloaded app to bypass Gatekeeper checks; Apple fixed it in macOS Big Sur 11.3 and Security Update 2021-002 Catalina. The initial advisory notes that Apple is awar...

5.5CVSS6.2AI score0.68531EPSS
In wildExploits5References3Affected Software2
Rapid7 Blog
Rapid7 Blog
added 2021/05/14 5:29 p.m.148 views

Metasploit Wrap-Up

Stopped at the gate? A fun new module from timwr, taking advantage of a technique reported by Cedric Owens, is reminding everyone if there is no fence a gate will not deter us. The new module provides a quick wrapper for payloads that bypasses download origination and authorization requirements...

6.8CVSS1.2AI score0.99981EPSS
Exploits44
0day.today
0day.today
added 2021/05/08 12:0 a.m.208 views

macOS Gatekeeper Check Bypass Exploit

This Metasploit module serves an OSX app as a zip that contains no Info.plist, which bypasses gatekeeper in macOS versions prior to 11.3. If the user visits the site on Safari, the zip file is automatically extracted, and clicking on the downloaded file will automatically launch the payload. If t...

5.5CVSS0.1AI score0.68531EPSS
Exploits5
Metasploit
Metasploit
added 2021/05/07 5:42 p.m.201 views

macOS Gatekeeper check bypass

This module exploits two CVEs that bypass Gatekeeper. For CVE-2021-30657, this module serves an OSX app as a zip that contains no Info.plist, which bypasses gatekeeper in macOS use exploit/osx/browser/osxgatekeeperbypass msf exploitosxgatekeeperbypass show targets ...targets... msf...

5.5CVSS6.3AI score0.68531EPSS
Exploits5
ThreatPost
ThreatPost
added 2021/04/27 11:45 a.m.107 views

Apple Patches Zero-Day MacOS Bypass Bug

Apple patched a zero-day vulnerability in its MacOS that can bypass critical anti-malware capabilities and which a variant of the notorious Mac threat Shlayer adware dropper already has been exploiting for several months. Security researcher Cedric Owens first discovered the vulnerability, tracke...

6.2AI score0.68531EPSS
Exploits5References17
Circl
Circl
added 2021/04/27 11:27 a.m.20 views

CVE-2021-30657

creationtimestamp| type| source ---|---|--- 2021-04-27 11:27:31+00:00| exploited| https://t.me/truesecator/1651 2021-04-27 15:35:04+00:00| seen| https://t.me/SecLabNews/10112 2021-04-27 17:20:13+00:00| exploited| https://t.me/xakepru/10695 2021-05-07 14:18:11+00:00| seen|...

5.5CVSS6.7AI score0.68531EPSS
Exploits5References15
The Hacker News
The Hacker News
added 2021/04/27 10:29 a.m.178 views

Hackers Exploit 0-Day Gatekeeper Flaw to Attack macOS Computers

Security is only as strong as the weakest link. As further proof of this, Apple released an update to macOS operating systems to address an actively exploited zero-day vulnerability that could circumvent all security protections, thus permitting unapproved software to run on Macs. The macOS flaw,...

8.8CVSS0.3AI score0.68531EPSS
Exploits5
Rows per page
Query Builder