![]() Thus any low privileged user can connect and call external methods defined in XPC service as root, elevating their privilege to the highest level. The XPC implementation of nsAuxiliarySvc process does not perform validation on new connections before accepting the connection. Netskope client prior to 89.x on macOS is impacted by a local privilege escalation vulnerability. ![]() Foxit PDF Reader and PDF Editor before 11.1 on macOS allow remote attackers to execute arbitrary code via getURL in the JavaScript API.įoxit PDF Reader and PDF Editor before 11.1 on macOS allow remote attackers to execute arbitrary code via app.launchURL in the JavaScript API.įoxit PDF Reader and PDF Editor before 11.1 on macOS allow remote attackers to execute arbitrary code via in the XFA API.Īn improper control of generation of code vulnerability in FortiClientMacOS versions 7.0.0 and below and 6.4.5 and below may allow an authenticated attacker to hijack the MacOS camera without the user permission via the malicious dylib file.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |