CVEs-PoC/2021/CVE-2021-30768.md

### [CVE-2021-30768](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30768)
![](https://img.shields.io/static/v1?label=Product&message=Security%20Update%20-%20Catalina&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=iOS&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2011.5%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2014.7%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3C%202021%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3C%207.6%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20sandboxed%20process%20may%20be%20able%20to%20circumvent%20sandbox%20restrictions&color=brighgreen)

### Description

A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-004 Catalina. A sandboxed process may be able to circumvent sandbox restrictions.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/Abdulhadi21/fugu14
- https://github.com/Abdulhadi21/https-github.com-LinusHenze-Fugu14
- https://github.com/LinusHenze/Fugu14
- https://github.com/epeth0mus/Fugu16
- https://github.com/evilcorp1311/kkkk
- https://github.com/gfam2801/fugu14-online
- https://github.com/houjingyi233/macOS-iOS-system-security
- https://github.com/nanerasingh/fugu14