First published: Wed Jul 21 2021(Updated: )
A permissions issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.5. A malicious application may be able to access a user’s recent Contacts.
Credit: product-security@apple.com Matt Shockley (twitter.com/mattshockl) Csaba Fitzl @theevilbit Offensive Security
Affected Software | Affected Version | How to fix |
---|---|---|
Apple macOS Big Sur | <11.5 | 11.5 |
Apple macOS | >=11.0<11.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The vulnerability ID for the permissions issue in Identity Services is CVE-2021-30803.
The permissions issue in Identity Services affects Apple macOS Big Sur version up to and excluding 11.5.
The permissions issue in Identity Services was addressed by improving validation.
The severity of CVE-2021-30803 is not specified.
To fix the permissions issue in Identity Services, update to macOS Big Sur version 11.5 or later.