You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
rtrouton
published
GHSA-rgq4-wxpj-5jv9Sep 11, 2023
Package
Privileges
(macOS)
Affected versions
< 1.5.4
Patched versions
1.5.4
Description
Impact
An attacker with standard privileges on macOS when requesting administrator privileges from the application can submit input which causes a buffer overflow resulting in a crash of the application. This could make the application unavailable and allow reading or modification of data.
Impact
An attacker with standard privileges on macOS when requesting administrator privileges from the application can submit input which causes a buffer overflow resulting in a crash of the application. This could make the application unavailable and allow reading or modification of data.
Patches
The issue has been fixed in Privileges 1.5.4.
Workarounds
None. Please update to Privileges 1.5.4 or later.
References
https://github.com/SAP/macOS-enterprise-privileges/releases/tag/1.5.4
Acknowledgements