VDB
CVE-2021-1873
CVE-2021-1873
PUBLISHED
CVSS 4.300000190734863 MEDIUM
An API issue in Accessibility TCC permissions was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. A malicious application may be able to unexpectedly leak a user's credentials from secure text fields.
EPSS 0.31% · 54.4th percentile
Risk Scores
CVSS 2.0
4.300000190734863
EPSS Score
0.31%
54.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| apple | macos | 11.0 |
| apple | mac_os_x | 10.15.6, 10.14.6, 10.14.6 |
| Apple | macOS | unspecified, unspecified, unspecified |
Exploit Intelligence
Timeline
- Apr 27, 2021 CVE Published
- Sep 9, 2021 EPSS Score
- Sep 21, 2021 EPSS Score
- Nov 6, 2021 EPSS Score
- Jan 2, 2022 EPSS Score
- Mar 1, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Apr 28, 2022 EPSS Score
- Jun 24, 2022 EPSS Score
- Aug 22, 2022 EPSS Score
- Oct 19, 2022 EPSS Score
- Dec 16, 2022 EPSS Score
References
- https://support.apple.com/fr-fr/HT212325 advisory
- https://support.apple.com/fr-fr/HT212327 advisory
- https://support.apple.com/fr-fr/HT212317 advisory
- https://support.apple.com/fr-fr/HT212318 advisory
- https://support.apple.com/fr-fr/HT212324 advisory
- https://support.apple.com/fr-fr/HT212326 advisory
- https://support.apple.com/fr-fr/HT212319 advisory
- https://support.apple.com/fr-fr/HT212323 advisory
- https://support.apple.com/fr-fr/HT212320 advisory
- https://support.apple.com/fr-fr/HT212321 advisory
- https://support.apple.com/en-us/HT212325 url
- https://support.apple.com/en-us/HT212326 url
- https://support.apple.com/en-us/HT212327 url
- https://nvd.nist.gov/vuln/detail/CVE-2021-1873 advisory