CVE-2021-30856

Summary

This issue was addressed by adding a new Remote Login option for opting into Full Disk Access for Secure Shell sessions. This issue is fixed in macOS Big Sur 11.3. A malicious unsandboxed app on a system with Remote Login enabled may bypass Privacy preferences.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < 11.3affected

Weaknesses

  • A malicious unsandboxed app on a system with Remote Login enabled may bypass Privacy preferences

ADP Enrichment

CVE Program Container

Additional References

References