CVE-2021-30955

Vulnerability

A race condition exists in the kernel's state handling, which can be exploited by a malicious application to execute arbitrary code with kernel privileges. The vulnerability affects Apple's operating systems: iOS and iPadOS prior to 15.2, macOS Monterey prior to 12.1, watchOS prior to 8.3, and tvOS prior to 15.2 [1][2][3][4]. The issue was addressed with improved state handling.

Exploitation

An attacker must have the ability to run a malicious application on the target device. No additional privileges or user interaction beyond installing the app are required. The race condition is triggered during normal kernel operations, allowing the attacker to corrupt kernel memory and gain control.

Impact

Successful exploitation grants the attacker arbitrary code execution with kernel privileges, leading to full compromise of the device's operating system. This includes the ability to read and modify any data, install additional software, and bypass security mechanisms.

Mitigation

Apple released fixes on December 13, 2021, in iOS 15.2 and iPadOS 15.2 [1], macOS Monterey 12.1 [2], watchOS 8.3 [3], and tvOS 15.2 [4]. Users should update their devices to these versions immediately. No workarounds are available.