CVE-2021-40531

Опубликовано: 06 сент. 2021

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

Sketch before 75 allows library feeds to be used to bypass file quarantine. Files are automatically downloaded and opened, without the com.apple.quarantine extended attribute. This results in remote code execution, as demonstrated by CommandString in a terminal profile to Terminal.app.

Ссылки

https://jonpalmisc.com/2021/11/22/cve-2021-40531
Exploit
Third Party Advisory
https://www.sketch.com/updates/#version-75
Patch
Release Notes
Vendor Advisory
https://jonpalmisc.com/2021/11/22/cve-2021-40531
Exploit
Third Party Advisory
https://www.sketch.com/updates/#version-75
Patch
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:sketch:sketch:*:*:*:*:*:*:*:*

Версия до 75 (исключая)

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

EPSS

Процентиль: 91%

0.06708

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-jf84-45wf-mjgm