CVE-2021-1782

Summary

A race condition was addressed with improved locking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited..

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 14.4affected
ApplemacOSunspecified < 11.2affected
ApplemacOSunspecified < 7.3affected
ApplemacOSunspecified < 14.4affected

Weaknesses

  • A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited.

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References