VDB
CVE-2021-30657
CVE-2021-30657
PUBLISHED
KEV
CVSS 4.300000190734863 MEDIUM
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina. A malicious application may bypass Gatekeeper checks. Apple is aware of a report that this issue may have been actively exploited..
EPSS 83.08% · 99.3th percentile
Risk Scores
CVSS 2.0
4.300000190734863
EPSS Score
83.08%
99.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| apple | macos | 11.0 |
| apple | mac_os_x | 10.15.7, 10.15.7, 10.15.7 |
| Apple | macOS | *, unspecified |
Exploit Intelligence
- A sample POC for CVE-2021-30657 affecting MacOS (github-poc)
- A sample POC for CVE-2021-30657 affecting MacOS (github-poc)
- A sample POC for CVE-2021-30657 affecting MacOS (github-poc)
- A sample POC for CVE-2021-30657 affecting MacOS (github-poc)
- CIRCL seen: CVE-2021-30657 (circl-sighting)
- CIRCL seen: CVE-2021-30657 (circl-sighting)
- CIRCL exploited: CVE-2021-30657 (circl-sighting)
- CIRCL seen: CVE-2021-30657 (circl-sighting)
- CIRCL seen: CVE-2021-30657 (circl-sighting)
- CIRCL seen: CVE-2021-30657 (circl-sighting)
…and 19 more exploits
Timeline
- Apr 27, 2021 CVE Published
- May 7, 2021 PoC Published
- May 8, 2021 PoC Published
- May 24, 2021 VulnCheck KEV Exploitation
- Sep 9, 2021 EPSS Score
- Sep 22, 2021 EPSS Score
- Nov 3, 2021 CISA KEV Added
- Nov 8, 2021 PoC Published
- Nov 9, 2021 EPSS Score
- Nov 20, 2021 PoC Published
- Apr 6, 2022 EPSS Score
- Jun 17, 2022 EPSS Score
References
- https://support.apple.com/fr-fr/HT212325 advisory
- https://support.apple.com/fr-fr/HT212327 advisory
- https://support.apple.com/fr-fr/HT212317 advisory
- https://support.apple.com/fr-fr/HT212318 advisory
- https://support.apple.com/fr-fr/HT212324 advisory
- https://support.apple.com/fr-fr/HT212326 advisory
- https://support.apple.com/fr-fr/HT212319 advisory
- https://support.apple.com/fr-fr/HT212323 advisory
- https://support.apple.com/fr-fr/HT212320 advisory
- https://support.apple.com/fr-fr/HT212321 advisory
- https://support.apple.com/en-us/HT212325 url
- https://support.apple.com/en-us/HT212326 url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-30657 url
- https://nvd.nist.gov/vuln/detail/CVE-2021-30657 advisory