What is CVE-2021-30790?

CVE-2021-30790 is an information disclosure vulnerability in AppKit, which has been addressed by removing the vulnerable code.

What software are affected by CVE-2021-30790?

The affected software includes Apple Mojave, Apple Catalina, and Apple macOS Big Sur version 11.5.

How can I fix CVE-2021-30790?

To fix CVE-2021-30790, you should ensure that you have installed the latest updates from Apple.

Where can I find more information about CVE-2021-30790?

You can find more information about CVE-2021-30790 on the Apple support page: [link](https://support.apple.com/en-us/HT212600).

Vulnerability/
CVE-2021-30790

high

7.8

21/7/2021

8/9/2021

3/8/2024

CVE-2021-30790

First published: Wed Jul 21 2021(Updated: )

An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution.

Credit: hjy79425575 Trend Micro Zero Day Initiativehjy79425575 Trend Micro Zero Day Initiative product-security@apple.com hjy79425575 Trend Micro Zero Day Initiative

Affected Software	Affected Version	How to fix
Apple macOS	<11.5	11.5
macOS Catalina
macOS Mojave
Apple iOS and macOS	>=10.14<=10.14.5
Apple iOS and macOS	>=10.15<=10.15.6
Apple iOS and macOS	=10.14.6
Apple iOS and macOS	=10.14.6-security_update_2019-001
Apple iOS and macOS	=10.14.6-security_update_2019-002
Apple iOS and macOS	=10.14.6-security_update_2019-004
Apple iOS and macOS	=10.14.6-security_update_2019-005
Apple iOS and macOS	=10.14.6-security_update_2019-006
Apple iOS and macOS	=10.14.6-security_update_2019-007
Apple iOS and macOS	=10.14.6-security_update_2020-001
Apple iOS and macOS	=10.14.6-security_update_2020-002
Apple iOS and macOS	=10.14.6-security_update_2020-003
Apple iOS and macOS	=10.14.6-security_update_2020-004
Apple iOS and macOS	=10.14.6-security_update_2020-005
Apple iOS and macOS	=10.14.6-security_update_2020-006
Apple iOS and macOS	=10.14.6-security_update_2020-007
Apple iOS and macOS	=10.14.6-security_update_2021-001
Apple iOS and macOS	=10.14.6-security_update_2021-002
Apple iOS and macOS	=10.14.6-security_update_2021-003
Apple iOS and macOS	=10.14.6-security_update_2021-004
Apple iOS and macOS	=10.14.6-supplemental_update
Apple iOS and macOS	=10.14.6-supplemental_update_2
Apple iOS and macOS	=10.15.7
Apple iOS and macOS	=10.15.7-security_update_2020
Apple iOS and macOS	=10.15.7-security_update_2020-001
Apple iOS and macOS	=10.15.7-security_update_2020-005
Apple iOS and macOS	=10.15.7-security_update_2020-007
Apple iOS and macOS	=10.15.7-security_update_2021-001
Apple iOS and macOS	=10.15.7-security_update_2021-002
Apple iOS and macOS	=10.15.7-security_update_2021-003
Apple iOS and macOS	=10.15.7-supplemental_update
macOS	>=11.0<11.5

Never miss a vulnerability like this again

Reference Links

https://support.apple.com/en-us/HT212603 (Advisory)
https://support.apple.com/en-us/HT212600 (Advisory)
https://support.apple.com/en-us/HT212602 (Advisory)

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

What is CVE-2021-30790?
CVE-2021-30790 is an information disclosure vulnerability in AppKit, which has been addressed by removing the vulnerable code.
What software are affected by CVE-2021-30790?
The affected software includes Apple Mojave, Apple Catalina, and Apple macOS Big Sur version 11.5.
How can I fix CVE-2021-30790?
To fix CVE-2021-30790, you should ensure that you have installed the latest updates from Apple.
Where can I find more information about CVE-2021-30790?
You can find more information about CVE-2021-30790 on the Apple support page: [link](https://support.apple.com/en-us/HT212600).

agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/references
agent/last-modified-date
agent/description
agent/event
agent/trending
agent/source
collector/apple-support
agent/software-canonical-lookup-request
agent/tags
agent/softwarecombine
collector/nvd-index
vendor/apple
canonical/apple macos
canonical/macos catalina
canonical/macos mojave
canonical/apple ios and macos
version/apple ios and macos/10.14
version/apple ios and macos/10.14.5
version/apple ios and macos/10.15
version/apple ios and macos/10.15.6
version/apple ios and macos/10.14.6
version/apple ios and macos/10.14.6-security_update_2019-001
version/apple ios and macos/10.14.6-security_update_2019-002
version/apple ios and macos/10.14.6-security_update_2019-004
version/apple ios and macos/10.14.6-security_update_2019-005
version/apple ios and macos/10.14.6-security_update_2019-006
version/apple ios and macos/10.14.6-security_update_2019-007
version/apple ios and macos/10.14.6-security_update_2020-001
version/apple ios and macos/10.14.6-security_update_2020-002
version/apple ios and macos/10.14.6-security_update_2020-003
version/apple ios and macos/10.14.6-security_update_2020-004
version/apple ios and macos/10.14.6-security_update_2020-005
version/apple ios and macos/10.14.6-security_update_2020-006
version/apple ios and macos/10.14.6-security_update_2020-007
version/apple ios and macos/10.14.6-security_update_2021-001
version/apple ios and macos/10.14.6-security_update_2021-002
version/apple ios and macos/10.14.6-security_update_2021-003
version/apple ios and macos/10.14.6-security_update_2021-004
version/apple ios and macos/10.14.6-supplemental_update
version/apple ios and macos/10.14.6-supplemental_update_2
version/apple ios and macos/10.15.7
version/apple ios and macos/10.15.7-security_update_2020
version/apple ios and macos/10.15.7-security_update_2020-001
version/apple ios and macos/10.15.7-security_update_2020-005
version/apple ios and macos/10.15.7-security_update_2020-007
version/apple ios and macos/10.15.7-security_update_2021-001
version/apple ios and macos/10.15.7-security_update_2021-002
version/apple ios and macos/10.15.7-security_update_2021-003
version/apple ios and macos/10.15.7-supplemental_update
canonical/macos
version/macos/11.0

CVE-2021-30790

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

Peer vulnerabilities

Frequently Asked Questions

What is CVE-2021-30790?

What software are affected by CVE-2021-30790?

How can I fix CVE-2021-30790?

Where can I find more information about CVE-2021-30790?

Company

Resources

Contact