CVE-2023-40299
CVE-2023-40299 affects Kong Insomnia 2023.4.0 on macOS. The root cause is the use of the DYLD_INSERT_LIBRARIES environment variable, which can be manipulated to execute code and access restricted files, or trigger TCC permission requests. The exploit is described as a local attack with low attack...