Vulnerability Database

290,300

Total vulnerabilities in the database

CVE-2021-30969

A path handling issue was addressed with improved validation. This issue is fixed in Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. Processing a maliciously crafted URL may cause unexpected JavaScript execution from a file on disk.

  • Published: Aug 24, 2021
  • Updated: Apr 14, 2023
  • CVE: CVE-2021-30969
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.8
  • AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: High
  • Score: 9.3
  • AV:N/AC:M/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
apple / mac_os_x 10.15.7-security_update_2020-001 10.15.7-security_update_2020-001.x
apple / mac_os_x 10.15.7-security_update_2021-001 10.15.7-security_update_2021-001.x
apple / mac_os_x 10.15.7-security_update_2021-002 10.15.7-security_update_2021-002.x
apple / mac_os_x 10.15.7-security_update_2021-003 10.15.7-security_update_2021-003.x
apple / mac_os_x 10.15.7-security_update_2021-004 10.15.7-security_update_2021-004.x
apple / mac_os_x 10.15 10.15.7.x
apple / mac_os_x 10.15.7-security_update_2021-005 10.15.7-security_update_2021-005.x
apple / mac_os_x 10.15.7-security_update_2021-006 10.15.7-security_update_2021-006.x
apple / macos 11.0 11.6.2
apple / mac_os_x 10.15.7-security_update_2021-007 10.15.7-security_update_2021-007.x