Security Advisory

CVE-2020-14977

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-06-23 19:02:30

Last updated 2024-08-04 13:00:52

Assigner mitre

State PUBLISHED

Description

An issue was discovered in F-Secure SAFE 17.7 on macOS. The XPC services use the PID to identify the connecting client, which allows an attacker to perform a PID reuse attack and connect to a privileged XPC service, and execute privileged commands on the system. NOTE: the attacker needs to execute code on an already compromised machine.

← Browse all CVEs View on cve.org ↗