exploitDog

CVE-2022-25366

Опубликовано: 19 фев. 2022

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

Cryptomator through 1.6.5 allows DYLIB injection because, although it has the flag 0x1000 for Hardened Runtime, it has the com.apple.security.cs.disable-library-validation and com.apple.security.cs.allow-dyld-environment-variables entitlements. An attacker can exploit this by creating a malicious .dylib file that can be executed via the DYLD_INSERT_LIBRARIES environment variable.

Ссылки

https://cryptomator.org/
Product
Vendor Advisory
https://medium.com/%40tehwinsam/cryptomator-1-6-5-dylib-injection-8004a1e90b26
https://cryptomator.org/
Product
Vendor Advisory
https://medium.com/%40tehwinsam/cryptomator-1-6-5-dylib-injection-8004a1e90b26

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cryptomator:cryptomator:*:*:*:*:*:*:*:*

Версия до 1.6.5 (включая)

EPSS

Процентиль: 18%

0.00056

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-426

Связанные уязвимости

GHSA-rg7g-mrvx-gg82

CVSS3: 7.8

github

почти 4 года назад

Cryptomator through 1.6.5 allows DYLIB injection because, although it has the flag 0x1000 for Hardened Runtime, it has the com.apple.security.cs.disable-library-validation and com.apple.security.cs.allow-dyld-environment-variables entitlements. An attacker can exploit this by creating a malicious .dylib file that can be executed via the DYLD_INSERT_LIBRARIES environment variable.

EPSS

Процентиль: 18%

0.00056

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-426