First published: Mon May 24 2021(Updated: )
LaunchServices. This issue was addressed with improved environment sanitization.
Credit: Ron Waisberg @epsilan Ron Waisberg @epsilan Ron Waisberg @epsilan Ron Waisberg @epsilan Ron Waisberg @epsilan Ron Waisberg @epsilan Ron Waisberg @epsilan product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iPadOS | <14.6 | |
Apple iPhone OS | <14.6 | |
Apple Mac OS X | >=10.14<=10.14.5 | |
Apple Mac OS X | >=10.15<=10.15.6 | |
Apple Mac OS X | =10.14.6 | |
Apple Mac OS X | =10.14.6-security_update_2019-001 | |
Apple Mac OS X | =10.14.6-security_update_2019-002 | |
Apple Mac OS X | =10.14.6-security_update_2019-004 | |
Apple Mac OS X | =10.14.6-security_update_2019-005 | |
Apple Mac OS X | =10.14.6-security_update_2019-006 | |
Apple Mac OS X | =10.14.6-security_update_2019-007 | |
Apple Mac OS X | =10.14.6-security_update_2020-001 | |
Apple Mac OS X | =10.14.6-security_update_2020-002 | |
Apple Mac OS X | =10.14.6-security_update_2020-003 | |
Apple Mac OS X | =10.14.6-security_update_2020-004 | |
Apple Mac OS X | =10.14.6-security_update_2020-005 | |
Apple Mac OS X | =10.14.6-security_update_2020-006 | |
Apple Mac OS X | =10.14.6-security_update_2020-007 | |
Apple Mac OS X | =10.14.6-security_update_2021-001 | |
Apple Mac OS X | =10.14.6-security_update_2021-002 | |
Apple Mac OS X | =10.14.6-security_update_2021-003 | |
Apple Mac OS X | =10.14.6-security_update_2021-004 | |
Apple Mac OS X | =10.14.6-supplemental_update | |
Apple Mac OS X | =10.14.6-supplemental_update_2 | |
Apple Mac OS X | =10.15.7 | |
Apple Mac OS X | =10.15.7-security_update_2020 | |
Apple Mac OS X | =10.15.7-security_update_2020-001 | |
Apple Mac OS X | =10.15.7-security_update_2020-005 | |
Apple Mac OS X | =10.15.7-security_update_2020-007 | |
Apple Mac OS X | =10.15.7-security_update_2021-001 | |
Apple Mac OS X | =10.15.7-security_update_2021-002 | |
Apple Mac OS X | =10.15.7-security_update_2021-003 | |
Apple Mac OS X | =10.15.7-supplemental_update | |
Apple macOS | >=11.0<11.4 | |
Apple tvOS | <14.6 | |
Apple watchOS | <7.5 | |
Apple macOS Big Sur | <11.5 | 11.5 |
Apple Catalina | ||
Apple macOS Big Sur | <11.4 | 11.4 |
Apple watchOS | <7.5 | 7.5 |
Apple Mojave | ||
Apple iOS | <14.6 | 14.6 |
Apple iPadOS | <14.6 | 14.6 |
Apple tvOS | <14.6 | 14.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)
(Found alongside the following vulnerabilities)
CVE-2021-30677 is a vulnerability in LaunchServices that was addressed with improved environment sanitization.
CVE-2021-30677 affects Apple Mojave, Apple tvOS up to (but not including) 14.6, Apple watchOS up to (but not including) 7.5, Apple Catalina, Apple macOS Big Sur up to (but not including) 11.4, Apple iOS up to (but not including) 14.6, and Apple iPadOS up to (but not including) 14.6.
To fix CVE-2021-30677, update your software to the latest version provided by Apple.
You can find more information about CVE-2021-30677 on the Apple support website. Reference links: - [CVE-2021-30677 - Apple Support](https://support.apple.com/en-us/HT212600) - [CVE-2021-30677 - Apple Support](https://support.apple.com/en-us/HT212533) - [CVE-2021-30677 - Apple Support](https://support.apple.com/en-us/HT212529)
There is no known exploit for CVE-2021-30677.