Perception Point, a leading email and cloud collaboration channel security company, offering fast interception of content-borne attacks as a service, announced today that its researchers uncovered two zero-day flaws in macOS. CVE-2021-30783, fixed in the Security Update 2021-005 Catalina, and CVE-2021-30864, now fixed in the latest macOS version 12.0.1. The vulnerabilities introduce a novel method to escape the MacOS process sandbox. This method has been confirmed, addressed and fixed by Apple.
Read more here.