Unrated severityNVD Advisory· Published Sep 8, 2021· Updated Aug 3, 2024

CVE-2021-30805

Description

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Memory corruption in macOS kernel (AMD Kernel) allows an application to execute arbitrary code with kernel privileges. Fixed in macOS Big Sur 11.5 and security updates.

Vulnerability

A memory corruption issue exists in the AMD Kernel component of macOS, affecting versions prior to macOS Big Sur 11.5, Security Update 2021-004 Catalina, and Security Update 2021-005 Mojave [1][2][3]. The vulnerability is triggered when an application sends crafted input to the kernel, leading to improper validation and memory corruption.

Exploitation

An attacker must have the ability to run a malicious application on the target system. No additional privileges or user interaction beyond launching the application are required. The application can exploit the memory corruption by sending specially crafted data to the kernel, potentially triggering arbitrary code execution.

Impact

Successful exploitation allows the application to execute arbitrary code with kernel privileges, resulting in full compromise of the system's confidentiality, integrity, and availability. The attacker gains complete control over the affected macOS device.

Mitigation

Apple addressed this issue in macOS Big Sur 11.5, Security Update 2021-004 Catalina, and Security Update 2021-005 Mojave, all released on July 21, 2021 [1][2][3]. Users should update to the latest available version for their macOS release. No workarounds are documented.

References

AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Apple Inc./macOS Big Surllm-fuzzy
Range: = 11.5
Apple Inc./macOSv5
Range: unspecified
Apple Inc./Security Update 2021-008 Catalinacpe-rescue
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.apple.com/en-us/HT212600mitrex_refsource_MISC
support.apple.com/en-us/HT212602mitrex_refsource_MISC
support.apple.com/en-us/HT212603mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000