Overview:
Apple has fixed a wildly exploited Zero-Day vulnerability in macOS. The vulnerability is tracked as CVE-2021-30807. It allows attackers to execute arbitrary code with kernel privileges. This flaw is being exploited actively in the wild.

CVE assigned
CVE-2021-30807

Affected software:
macOS Big Sur before 11.5.1

Solution:

To address this vulnerability, the vendor has released security patches. For more information, please refer to our blog

Use SanerNow platform to apply this critical severity patch quickly across the organization as shown below.

Vulnerability detection and patching of Apple macOS:
1. Login to SanerNow platform
2. Switch to the account/site specific view and Go to 'VM tool.'
3. If your Application (macOS) is vulnerable, Saner lists the above CVE in 'Vulnerabilities' under the relevant 'Groups/Devices' as shown in the below diagram:

4. Search for this vulnerability in VM tool. If you are affected, apply the patch through PM -> Missing Patches.
5. Select 'Groups/Devices' in the 'Asset Source' section and click 'Apply'.
6. Select the product 'Apple Mac OS 11' from the 'Asset' section as shown in the below image:

7. Select ‘Apply Selected Patches’ at the rightmost corner. This will prompt for ‘Creating Patch Task’. Fill in ‘Task Name’ and ‘Remediation Schedule' as per your preference and click on ‘Apply Selected Patches' as shown below:

8. Remediation job will be created, which will fix the vulnerability by upgrading Apple Mac OS to the latest patch version.
9. Once remediation is done, the Saner agent automatically scans again and uploads the result to SanerNow as shown below.