CVE-2021-30969

Summary

A path handling issue was addressed with improved validation. This issue is fixed in Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. Processing a maliciously crafted URL may cause unexpected JavaScript execution from a file on disk.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < 11.6affected
ApplemacOSunspecified < 2021affected

Weaknesses

  • Processing a maliciously crafted URL may cause unexpected JavaScript execution from a file on disk

ADP Enrichment

CVE Program Container

Additional References

References