CVE-2021-30677
First published: Mon May 24 2021(Updated: )
LaunchServices. This issue was addressed with improved environment sanitization.
Credit: Ron Waisberg @epsilan Ron Waisberg @epsilan Ron Waisberg @epsilan Ron Waisberg @epsilan Ron Waisberg @epsilan Ron Waisberg @epsilan Ron Waisberg @epsilan product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple Catalina | ||
| Apple Mojave | ||
| Apple watchOS | <7.5 | 7.5 |
| Apple iPadOS | <14.6 | |
| Apple iPhone OS | <14.6 | |
| Apple Mac OS X | >=10.14<=10.14.5 | |
| Apple Mac OS X | >=10.15<=10.15.6 | |
| Apple Mac OS X | =10.14.6 | |
| Apple Mac OS X | =10.14.6-security_update_2019-001 | |
| Apple Mac OS X | =10.14.6-security_update_2019-002 | |
| Apple Mac OS X | =10.14.6-security_update_2019-004 | |
| Apple Mac OS X | =10.14.6-security_update_2019-005 | |
| Apple Mac OS X | =10.14.6-security_update_2019-006 | |
| Apple Mac OS X | =10.14.6-security_update_2019-007 | |
| Apple Mac OS X | =10.14.6-security_update_2020-001 | |
| Apple Mac OS X | =10.14.6-security_update_2020-002 | |
| Apple Mac OS X | =10.14.6-security_update_2020-003 | |
| Apple Mac OS X | =10.14.6-security_update_2020-004 | |
| Apple Mac OS X | =10.14.6-security_update_2020-005 | |
| Apple Mac OS X | =10.14.6-security_update_2020-006 | |
| Apple Mac OS X | =10.14.6-security_update_2020-007 | |
| Apple Mac OS X | =10.14.6-security_update_2021-001 | |
| Apple Mac OS X | =10.14.6-security_update_2021-002 | |
| Apple Mac OS X | =10.14.6-security_update_2021-003 | |
| Apple Mac OS X | =10.14.6-security_update_2021-004 | |
| Apple Mac OS X | =10.14.6-supplemental_update | |
| Apple Mac OS X | =10.14.6-supplemental_update_2 | |
| Apple Mac OS X | =10.15.7 | |
| Apple Mac OS X | =10.15.7-security_update_2020 | |
| Apple Mac OS X | =10.15.7-security_update_2020-001 | |
| Apple Mac OS X | =10.15.7-security_update_2020-005 | |
| Apple Mac OS X | =10.15.7-security_update_2020-007 | |
| Apple Mac OS X | =10.15.7-security_update_2021-001 | |
| Apple Mac OS X | =10.15.7-security_update_2021-002 | |
| Apple Mac OS X | =10.15.7-security_update_2021-003 | |
| Apple Mac OS X | =10.15.7-supplemental_update | |
| Apple macOS | >=11.0<11.4 | |
| Apple tvOS | <14.6 | |
| Apple watchOS | <7.5 | |
| Apple tvOS | <14.6 | 14.6 |
| Apple iOS | <14.6 | 14.6 |
| Apple iPadOS | <14.6 | 14.6 |
| Apple macOS | <11.5 | 11.5 |
| Apple macOS | <11.4 | 11.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT212528 (Advisory)
- https://support.apple.com/en-us/HT212529 (Advisory)
- https://support.apple.com/en-us/HT212532 (Advisory)
- https://support.apple.com/en-us/HT212533 (Advisory)
- https://support.apple.com/en-us/HT212600 (Advisory)
- https://support.apple.com/en-us/HT212602 (Advisory)
- https://support.apple.com/en-us/HT212603 (Advisory)
- https://support.apple.com/kb/HT212602
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2021-30805
- CVE-2021-30790
- CVE-2021-30811
- CVE-2021-30781
- CVE-2021-30672
- CVE-2021-30775
- CVE-2021-30776
- CVE-2021-30772
- CVE-2021-30777
- CVE-2021-30789
- CVE-2021-30733
- CVE-2021-30774
- CVE-2021-30780
- CVE-2021-30768
- CVE-2021-30760
- CVE-2021-30759
- CVE-2021-30788
- CVE-2021-30785
- CVE-2021-30787
- CVE-2021-30765
- CVE-2021-30766
- CVE-2021-30784
- CVE-2021-30731
- CVE-2021-30703
- CVE-2021-30793
- CVE-2021-30677
- CVE-2021-30783
- CVE-2021-30791
- CVE-2021-30792
- CVE-2021-30796
- CVE-2021-30782
- CVE-2021-30799
- CVE-2021-30707
- CVE-2021-30685
- CVE-2021-30681
- CVE-2021-30686
- CVE-2021-30753
- CVE-2021-30727
- CVE-2021-30724
- CVE-2021-30771
- CVE-2021-30755
- CVE-2021-30697
- CVE-2021-30710
- CVE-2021-30687
- CVE-2021-30700
- CVE-2021-30701
- CVE-2021-30705
- CVE-2021-30706
- CVE-2021-30740
- CVE-2021-30704
- CVE-2021-30715
- CVE-2021-30736
- CVE-2021-30737
- CVE-2021-30744
- CVE-2021-21779
- CVE-2021-30682
- CVE-2021-30689
- CVE-2021-30749
- CVE-2021-30734
- CVE-2021-30720
- CVE-2021-30665
- CVE-2021-30663
- CVE-2021-30714
- CVE-2021-30729
- CVE-2021-30674
- CVE-2021-30741
- CVE-2021-30756
- CVE-2021-30723
- CVE-2021-30691
- CVE-2021-30692
- CVE-2021-30694
- CVE-2021-30725
- CVE-2021-30746
- CVE-2021-30693
- CVE-2021-30695
- CVE-2021-30708
- CVE-2021-30709
- CVE-2021-1821
- CVE-2021-30699
- CVE-2021-30999
- CVE-2021-23841
- CVE-2021-30698
- CVE-2021-30667
- CVE-2021-30871
- CVE-2021-31006
- CVE-2021-30748
- CVE-2021-30786
- CVE-2021-30817
- CVE-2021-30804
- CVE-2021-30803
- CVE-2021-30779
- CVE-2021-30778
- CVE-2021-3518
- CVE-2021-31004
- CVE-2021-30798
- CVE-2021-30758
- CVE-2021-30795
- CVE-2021-30797
- CVE-2021-30678
- CVE-2021-30676
- CVE-2021-30688
- CVE-2021-30669
- CVE-2021-30673
- CVE-2021-30684
- CVE-2021-30735
- CVE-2021-30683
- CVE-2021-30719
- CVE-2021-30728
- CVE-2021-30726
- CVE-2021-30739
- CVE-2021-30680
- CVE-2021-30702
- CVE-2021-30696
- CVE-2021-30679
- CVE-2020-36226
- CVE-2020-36227
- CVE-2020-36223
- CVE-2020-36224
- CVE-2020-36225
- CVE-2020-36221
- CVE-2020-36228
- CVE-2020-36222
- CVE-2020-36230
- CVE-2020-36229
- CVE-2021-30738
- CVE-2021-30751
- CVE-2021-30716
- CVE-2021-30717
- CVE-2021-30721
- CVE-2021-30722
- CVE-2021-30712
- CVE-2021-30668
- CVE-2021-30718
- CVE-2021-30671
- CVE-2021-30713
Frequently Asked Questions
What is CVE-2021-30677?
CVE-2021-30677 is a vulnerability in LaunchServices that was addressed with improved environment sanitization.
Which software versions are affected by CVE-2021-30677?
CVE-2021-30677 affects Apple Mojave, Apple tvOS up to (but not including) 14.6, Apple watchOS up to (but not including) 7.5, Apple Catalina, Apple macOS Big Sur up to (but not including) 11.4, Apple iOS up to (but not including) 14.6, and Apple iPadOS up to (but not including) 14.6.
How can I fix CVE-2021-30677?
To fix CVE-2021-30677, update your software to the latest version provided by Apple.
Where can I find more information about CVE-2021-30677?
You can find more information about CVE-2021-30677 on the Apple support website. Reference links: - [CVE-2021-30677 - Apple Support](https://support.apple.com/en-us/HT212600) - [CVE-2021-30677 - Apple Support](https://support.apple.com/en-us/HT212533) - [CVE-2021-30677 - Apple Support](https://support.apple.com/en-us/HT212529)
Is there a known exploit for CVE-2021-30677?
There is no known exploit for CVE-2021-30677.
- collector/apple-support
- agent/type
- agent/first-publish-date
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/trending
- agent/tags
- agent/softwarecombine
- agent/source
- vendor/apple
- canonical/apple catalina
- canonical/apple mojave
- canonical/apple watchos
- canonical/apple ipados
- canonical/apple iphone os
- canonical/apple mac os x
- version/apple mac os x/10.14
- version/apple mac os x/10.14.5
- version/apple mac os x/10.15
- version/apple mac os x/10.15.6
- version/apple mac os x/10.14.6
- version/apple mac os x/10.14.6-security_update_2019-001
- version/apple mac os x/10.14.6-security_update_2019-002
- version/apple mac os x/10.14.6-security_update_2019-004
- version/apple mac os x/10.14.6-security_update_2019-005
- version/apple mac os x/10.14.6-security_update_2019-006
- version/apple mac os x/10.14.6-security_update_2019-007
- version/apple mac os x/10.14.6-security_update_2020-001
- version/apple mac os x/10.14.6-security_update_2020-002
- version/apple mac os x/10.14.6-security_update_2020-003
- version/apple mac os x/10.14.6-security_update_2020-004
- version/apple mac os x/10.14.6-security_update_2020-005
- version/apple mac os x/10.14.6-security_update_2020-006
- version/apple mac os x/10.14.6-security_update_2020-007
- version/apple mac os x/10.14.6-security_update_2021-001
- version/apple mac os x/10.14.6-security_update_2021-002
- version/apple mac os x/10.14.6-security_update_2021-003
- version/apple mac os x/10.14.6-security_update_2021-004
- version/apple mac os x/10.14.6-supplemental_update
- version/apple mac os x/10.14.6-supplemental_update_2
- version/apple mac os x/10.15.7
- version/apple mac os x/10.15.7-security_update_2020
- version/apple mac os x/10.15.7-security_update_2020-001
- version/apple mac os x/10.15.7-security_update_2020-005
- version/apple mac os x/10.15.7-security_update_2020-007
- version/apple mac os x/10.15.7-security_update_2021-001
- version/apple mac os x/10.15.7-security_update_2021-002
- version/apple mac os x/10.15.7-security_update_2021-003
- version/apple mac os x/10.15.7-supplemental_update
- canonical/apple macos
- version/apple macos/11.0
- canonical/apple tvos
- canonical/apple ios