Описание
The AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands with elevated permissions by a local user process.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:appsanywhere:appsanywhere_client:1.4.0:*:*:*:*:macos:*:*
cpe:2.3:a:appsanywhere:appsanywhere_client:1.4.1:*:*:*:*:macos:*:*
cpe:2.3:a:appsanywhere:appsanywhere_client:1.5.1:*:*:*:*:macos:*:*
cpe:2.3:a:appsanywhere:appsanywhere_client:1.5.2:*:*:*:*:macos:*:*
cpe:2.3:a:appsanywhere:appsanywhere_client:1.6.0:*:*:*:*:macos:*:*
cpe:2.3:a:appsanywhere:appsanywhere_client:2.0.0:*:*:*:*:macos:*:*
EPSS
Процентиль: 4%
0.0002
Низкий
7.5 High
CVSS3
6.7 Medium
CVSS3
Дефекты
CWE-226
NVD-CWE-noinfo
CWE-269
Связанные уязвимости
CVSS3: 7.5
github
около 2 лет назад
The AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands with elevated permissions by a local user process.
EPSS
Процентиль: 4%
0.0002
Низкий
7.5 High
CVSS3
6.7 Medium
CVSS3
Дефекты
CWE-226
NVD-CWE-noinfo
CWE-269