CVE-2021-30731
MEDIUMmacOS 10.15-10.15.5 and 11.0.1-11.3 - Unprivileged USB Device Capture
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2021-30731. PoCs published by osy.
AI-analyzed exploit summary This repository contains a functional PoC for CVE-2021-30731, which exploits a vulnerability in macOS to access webcam feeds without proper entitlements. The code includes build scripts and dependencies to compile a working application that demonstrates the issue.
Description
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-004 Catalina. An unprivileged application may be able to capture USB devices.
Exploits (1)
This repository contains a functional PoC for CVE-2021-30731, which exploits a vulnerability in macOS to access webcam feeds without proper entitlements. The code includes build scripts and dependencies to compile a working application that demonstrates the issue.
References (2)
Scores
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N