A malicious application may be able to overwrite arbitrary files. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-004 Mojave. An issue with path validation logic for hardlinks was addressed with improved path sanitization.
2021-09-08T14:15:09.380
2024-11-21T06:04:37.093
Modified
CVSSv3.1: 5.5 (MEDIUM)
AV:L/AC:L/Au:N/C:N/I:P/A:N
3.9
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | apple | mac_os_x | ≤ 10.14.5 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | mac_os_x | 10.14.6 | Yes |
| Operating System | apple | macos | < 11.4 | Yes |