Описание
A library injection vulnerability exists in Microsoft PowerPoint 16.83 for macOS. A specially crafted library can leverage PowerPoint's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
EPSS
7.1 High
CVSS3
9.1 Critical
CVSS3
Дефекты
Связанные уязвимости
A library injection vulnerability exists in Microsoft PowerPoint 16.83 for macOS. A specially crafted library can leverage PowerPoint's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
Уязвимость программы подготовки и просмотра презентаций Microsoft PowerPoint операционной системы Mac OS, позволяющая нарушителю обойти существующие ограничения безопасности
EPSS
7.1 High
CVSS3
9.1 Critical
CVSS3