New Blog Post | New macOS vulnerability, Shrootless, that could bypass System Integrity Protection

%3CLINGO-SUB%20id%3D%22lingo-sub-2897574%22%20slang%3D%22en-US%22%3ENew%20Blog%20Post%20%7C%20New%20macOS%20vulnerability%2C%20Shrootless%2C%20that%20could%20bypass%20System%20Integrity%20Protection%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2897574%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Fig1-scrrenshot-of-csrutil-showing-SIP-status.png%22%20style%3D%22width%3A%20859px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F320999i665190866778856E%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22Fig1-scrrenshot-of-csrutil-showing-SIP-status.png%22%20alt%3D%22Fig1-scrrenshot-of-csrutil-showing-SIP-status.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F10%2F28%2Fmicrosoft-finds-new-macos-vulnerability-shrootless-that-could-bypass-system-integrity-protection%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EMicrosoft%20finds%20new%20macOS%20vulnerability%2C%20Shrootless%2C%20that%20could%20bypass%20System%20Integrity%20Protection%20-%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EMicrosoft%20has%20discovered%20a%20vulnerability%20that%20could%20allow%20an%20attacker%20to%20bypass%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdeveloper.apple.com%2Fdocumentation%2Fsecurity%2Fdisabling_and_enabling_system_integrity_protection%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3ESystem%20Integrity%20Protection%3C%2FA%3E%3CSPAN%3E%26nbsp%3B(SIP)%20in%20macOS%20and%20perform%20arbitrary%20operations%20on%20a%20device.%20We%20also%20found%20a%20similar%20technique%20that%20could%20allow%20an%20attacker%20to%20elevate%20their%20privileges%20to%20root%20an%20affected%20device.%20We%20shared%20these%20findings%20with%20Apple%20through%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fen-us%2Fmsrc%2Fcvd%3Frtc%3D1%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3ECoordinated%20Vulnerability%20Disclosure%3C%2FA%3E%3CSPAN%3E%26nbsp%3B(CVD)%20via%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fen-us%2Fmsrc%2Fmsvr%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EMicrosoft%20Security%20Vulnerability%20Research%3C%2FA%3E%3CSPAN%3E%26nbsp%3B(MSVR).%20A%20fix%20for%20this%20vulnerability%2C%20now%20identified%20as%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3DCVE-2021-30892%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3ECVE-2021-30892%3C%2FA%3E%3CSPAN%3E%2C%20was%20included%20in%20the%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fsupport.apple.com%2Fen-us%2FHT212872%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Esecurity%20updates%3C%2FA%3E%3CSPAN%3E%26nbsp%3Breleased%20by%20Apple%20on%20October%2026%2C%202021.%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2897574%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ECloud%20Security%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMicrosoft%20Cloud%20App%20Security%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EThreat%20Protection%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Microsoft

Fig1-scrrenshot-of-csrutil-showing-SIP-status.png

Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection -...

Microsoft has discovered a vulnerability that could allow an attacker to bypass System Integrity Protection (SIP) in macOS and perform arbitrary operations on a device. We also found a similar technique that could allow an attacker to elevate their privileges to root an affected device. We shared these findings with Apple through Coordinated Vulnerability Disclosure (CVD) via Microsoft Security Vulnerability Research (MSVR). A fix for this vulnerability, now identified as CVE-2021-30892, was included in the security updates released by Apple on October 26, 2021.

0 Replies