CVE-2021-30756
First published: Mon May 24 2021(Updated: )
A local attacker may be able to view Now Playing information from the lock screen. This issue is fixed in macOS Big Sur 11.4, iOS 14.6 and iPadOS 14.6. A privacy issue in Now Playing was addressed with improved permissions.
Credit: Ricky D'Amelio Jatayu Holznagel @jholznagel Ricky D'Amelio Jatayu Holznagel @jholznagel product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple macOS Big Sur | <11.4 | 11.4 |
| Apple iOS | <14.6 | 14.6 |
| Apple iPadOS | <14.6 | 14.6 |
| Apple iPadOS | <14.6 | |
| Apple iPhone OS | <14.6 | |
| Apple macOS | >=11.0<11.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT212528 (Advisory)
- https://support.apple.com/en-us/HT212529 (Advisory)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2021-30707
- CVE-2021-30685
- CVE-2021-30714
- CVE-2021-30729
- CVE-2021-30681
- CVE-2021-30686
- CVE-2021-30733
- CVE-2021-30753
- CVE-2021-30727
- CVE-2021-30724
- CVE-2021-30771
- CVE-2021-30697
- CVE-2021-30710
- CVE-2021-30687
- CVE-2021-30700
- CVE-2021-30701
- CVE-2021-30705
- CVE-2021-30706
- CVE-2021-30740
- CVE-2021-30674
- CVE-2021-30704
- CVE-2021-30715
- CVE-2021-30736
- CVE-2021-30703
- CVE-2021-30677
- CVE-2021-30741
- CVE-2021-30756
- CVE-2021-30723
- CVE-2021-30691
- CVE-2021-30692
- CVE-2021-30694
- CVE-2021-30725
- CVE-2021-30746
- CVE-2021-30693
- CVE-2021-30695
- CVE-2021-30708
- CVE-2021-30709
- CVE-2021-1821
- CVE-2021-30699
- CVE-2021-30999
- CVE-2021-30737
- CVE-2021-30744
- CVE-2021-21779
- CVE-2021-30682
- CVE-2021-30689
- CVE-2021-30749
- CVE-2021-30734
- CVE-2021-30720
- CVE-2021-23841
- CVE-2021-30698
- CVE-2021-30667
- CVE-2021-30678
- CVE-2021-30676
- CVE-2021-30688
- CVE-2021-30669
- CVE-2021-30672
- CVE-2021-30673
- CVE-2021-30755
- CVE-2021-30684
- CVE-2021-30735
- CVE-2021-30683
- CVE-2021-30719
- CVE-2021-30728
- CVE-2021-30726
- CVE-2021-30731
- CVE-2021-30739
- CVE-2021-30680
- CVE-2021-30702
- CVE-2021-30696
- CVE-2021-30679
- CVE-2020-36226
- CVE-2020-36227
- CVE-2020-36223
- CVE-2020-36224
- CVE-2020-36225
- CVE-2020-36221
- CVE-2020-36228
- CVE-2020-36222
- CVE-2020-36230
- CVE-2020-36229
- CVE-2021-30738
- CVE-2021-30751
- CVE-2021-30716
- CVE-2021-30717
- CVE-2021-30721
- CVE-2021-30722
- CVE-2021-30712
- CVE-2021-30668
- CVE-2021-30718
- CVE-2021-30671
- CVE-2021-30713
Frequently Asked Questions
What is CVE-2021-30756?
CVE-2021-30756 is a vulnerability that allows a local attacker to view Now Playing information from the lock screen.
Which software is affected by CVE-2021-30756?
CVE-2021-30756 affects macOS Big Sur (version up to 11.4), iOS (version up to 14.6), and iPadOS (version up to 14.6).
How can a local attacker exploit CVE-2021-30756?
A local attacker can exploit CVE-2021-30756 to view Now Playing information from the lock screen on the affected devices.
How severe is CVE-2021-30756?
CVE-2021-30756 is a local vulnerability, which means an attacker needs physical or remote access to the affected device, making it less severe compared to remote exploits.
How can I fix CVE-2021-30756?
To fix CVE-2021-30756, make sure to update your macOS Big Sur, iOS, and iPadOS to the latest versions available from Apple.
- collector/apple-support
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- vendor/apple
- canonical/apple ios
- canonical/apple ipados
- canonical/apple macos big sur
- canonical/apple iphone os
- canonical/apple macos
- version/apple macos/11.0