4 matches found
CVE-2020-25533
An issue was discovered in Malwarebytes before 4.0 on macOS. A malicious application was able to perform a privileged action within the Malwarebytes launch daemon. The privileged service improperly validated XPC connections by relying on the PID instead of the audit token. An attacker can constru...
CVE-2020-25533
creationtimestamp| type| source ---|---|--- 2021-01-16 00:51:26+00:00| seen| https://t.me/cibsecurity/22231...
CVE-2020-25533
An issue was discovered in Malwarebytes before 4.0 on macOS. A malicious application was able to perform a privileged action within the Malwarebytes launch daemon. The privileged service improperly validated XPC connections by relying on the PID instead of the audit token. An attacker can constru...
CVE-2020-25533
CVE-2020-25533 describes a local privilege issue in Malwarebytes for macOS prior to 4.0. A malicious application could exercise a privileged action within the Malwarebytes launch daemon because the service incorrectly validated XPC connections by relying on the process ID (PID) instead of the aud...