CVE-2021-30912: 
macOS vulnerability analysis and mitigation

CVE-2021-30912 is a security vulnerability discovered in macOS that affects the SoftwareUpdate component. The vulnerability was fixed in macOS Monterey 12.0.1, Security Update 2021-007 Catalina, and macOS Big Sur 11.6.1, released on October 25, 2021. The vulnerability was discovered by researchers Kirin (@Pwnrin) and chenyuwang (@mzzzz__) of Tencent Security Xuanwu Lab (Apple Support).

The vulnerability exists in the permissions logic of the SoftwareUpdate component, specifically in the SUHelper daemon process. The issue allowed a malicious application to gain unauthorized access to a user's Keychain items. The vulnerability has a CVSS v3.1 base score of 5.5 (MEDIUM) with a vector string of CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N (NVD).

If exploited, this vulnerability allows a malicious application to gain unauthorized access to a user's Keychain items, which could potentially expose sensitive information stored in the system's keychain (Apple Support, NVD).

Apple has addressed this vulnerability by improving the permissions logic in the affected systems. Users should update to macOS Monterey 12.0.1, Security Update 2021-007 Catalina, or macOS Big Sur 11.6.1 to protect against this vulnerability (Apple Support).