CVEs-PoC/2021/CVE-2021-30855.md

### [CVE-2021-30855](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30855)
![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2011.6%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2014.8%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2015%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3C%202021%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3C%208%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20application%20may%20be%20able%20to%20access%20restricted%20files&color=brighgreen)

### Description

A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, iOS 15 and iPadOS 15, watchOS 8, macOS Big Sur 11.6. An application may be able to access restricted files.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/houjingyi233/macOS-iOS-system-security