4 matches found
CVE-2023-25394
Videostream macOS app 0.5.0 and 0.4.3 has a Race Condition. The Updater privileged script attempts to update Videostream every 5 hours...
Groupnotes Inc. Videostream Mac client allows for privilege escalation to root account
Overview Groupnotes Inc. Videostream Mac client installs a LaunchDaemon that runs with root privileges. The daemon is vulnerable to a race condition that allows for arbitrary file writes. A low privileged attacker can escalate privileges to root on affected systems. Description Every five hours t...
CVE-2023-25394
Videostream macOS app 0.5.0 and 0.4.3 has a Race Condition. The Updater privileged script attempts to update Videostream every 5 hours...
CVE-2023-25394
CVE-2023-25394 affects the Videostream macOS app (versions 0.4.3–0.5.0). The root cause is a race condition in the Updater privileged script that runs every 5 hours, during which a low-privileged attacker could influence the update process and replace update files. CERT/CC corroborates a root-pri...