Skip to main content

Apple Products Multiple Vulnerabilities

Last Update Date: 29 Apr 2021 Release Date: 27 Apr 2021 5637 Views

RISK: High Risk

TYPE: Operating Systems - Mac OS

TYPE: Mac OS

Multiple vulnerabilities were identified in Apple products, a remote attacker could exploit some of these vulnerabilities to trigger cross site scripting, denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure, data manipulation and security restriction bypass on the targeted system.

 

Note:

[Updated 29-Apr-2021] CVE-2021–30657 is being exploited in the wild.


Impact

  • Cross-Site Scripting
  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure
  • Data Manipulation

System / Technologies affected

  • iCloud for Windows
  • iOS
  • iPadOS
  • watchOS
  • tvOS
  • Safari
  • Xcode
  • MacOS

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 
Apply fixes issued by the vendor:
 
  • iCloud for Windows 12.3
  • iOS 14.5
  • iPadOS 14.5
  • watchOS 7.4
  • tvOS 14.5
  • Safari 14.1
  • Xcode 12.5
  • macOS Big Sur 11.3
  • macOS Catalina latest version
  • macOS Mojave latest version

Vulnerability Identifier


Source


Related Link

https://support.apple.com/en-us/HT212317

https://support.apple.com/en-us/HT212318

https://support.apple.com/en-us/HT212320

https://support.apple.com/en-us/HT212321

https://support.apple.com/en-us/HT212323

https://support.apple.com/en-us/HT212324

https://support.apple.com/en-us/HT212325

https://support.apple.com/en-us/HT212326

https://support.apple.com/en-us/HT212327