2 matches found
CVE-2020-27192
CVE-2020-27192 affects BinaryNights ForkLift 3.4, where building with the com.apple.security.cs.disable-library-validation flag enables a local attacker to inject code into ForkLift and run malicious code with escalated privileges via ForkLift’s helper tool. This describes how the vulnerability a...
CVE-2020-15349
BinaryNights ForkLift 3.x prior to 3.4 is affected by a local privilege escalation due to a privileged helper tool exposing an XPC interface that permits file operations (copy, move, delete) across processes as root and to change permissions. Impact is local privilege escalation with full root-le...