CVE-2021-30657

A simple POC for CVE-2021-30657 affecting MacOS

Vulnerability detail

A vulnerability in syspolicyd allows specially crafted application bundle downloaded from internet to
bypass foundational macOS security features such as File Quarantine, Gatekeeper, and Notarization.
Armed with this capability attackers could hack macOS systems with a simple user (double)-click.

Usage

Put your desireable shell script in payload.sh.
Execute setup.sh
This will generate a bait.dmg that will contain our malicious app bundle.
Share it to the victim through internet.
When victim will double click on app icon after mounting dmg, it will execute the payload script without any gatekeeper's checks.

Affected version

macOS Big Sur < 11.3
Security Update Catalina < 2021-002

Technical details

https://objective-see.com/blog/blog_0x64.html

Name		Name	Last commit message	Last commit date
Latest commit History 5 Commits
LICENSE		LICENSE
README.md		README.md
payload.sh		payload.sh
setup.sh		setup.sh

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

CVE-2021-30657

Vulnerability detail

Usage

Affected version

Technical details

About

Releases

Packages

Languages

License

shubham0d/CVE-2021-30657

Folders and files

Latest commit

History

Repository files navigation

CVE-2021-30657

Vulnerability detail

Usage

Affected version

Technical details

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages