Lucene search
K

45 matches found

The Hacker News
The Hacker News
added 2024/09/03 4:1 a.m.26 views

New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access

Eight vulnerabilities have been uncovered in Microsoft applications for macOS that an adversary could exploit to gain elevated privileges or access sensitive data by circumventing the operating system's permissions-based model, which revolves around the Transparency, Consent, and Control TCC...

7.3AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/01/25 12:0 a.m.8 views

The vulnerability of the TCC (Transparency, Consent, and Control) mechanism in operating systems such as Mac OS, tvOS, watchOS, iOS, and iPadOS allows a perpetrator to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of the TCC Transparency, Consent, and Control mechanism in operating systems such as Mac OS, tvOS, watchOS, iOS, and iPadOS is related to insecure temporary files. Exploiting this vulnerability can allow attackers to bypass security restrictions and gain unauthorized access to...

3.3CVSS5.9AI score0.00328EPSS
Exploits0References6Affected Software5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/09/06 5:33 a.m.2 views

"direct" Desktop App for macOS fails to restrict access permissions

Overview "direct" Desktop App for macOS provided by L is B Corp. fails to restrict access permissions CWE-284. The access control mechanism provided by macOS "TCC Transparency Consent and Control" may be bypassed. Koh M. Nakagawa of FFRI Security, Inc. reported this vulnerability to IPA. JPCERT/C...

5.5CVSS6.5AI score0.00163EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2021/05/25 12:25 p.m.88 views

Apple Patches Zero-Day Flaw in MacOS that Allows for Sneaky Screenshots

Apple has patched a critical bug in macOS that could be exploited to take screenshots of someone’s computer and capture images of their activity within applications or on video conferences without that person knowing. Apple addressed the vulnerability—discovered by researchers at enterprise...

7.8CVSS8AI score0.0658EPSS
Exploits0References14
VulnCheck KEV
VulnCheck KEV
added 2021/05/24 12:0 a.m.4 views

VulnCheck KEV: CVE-2021-30713

Apple macOS Transparency, Consent, and Control TCC contains an unspecified permissions issue which may allow a malicious application to bypass privacy preferences...

7.8CVSS7.1AI score0.0658EPSS
Exploits0References1
Rows per page
Query Builder