CVE-2021-41388 in Netskope情報

要約

〜によって MITRE • 2022年01月05日

Netskope client prior to 89.x on macOS is impacted by a local privilege escalation vulnerability. The XPC implementation of nsAuxiliarySvc process does not perform validation on new connections before accepting the connection. Thus any low privileged user can connect and call external methods defined in XPC service as root, elevating their privilege to the highest level.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

予約する

2021年09月17日

モデレーション

承諾済み

エントリ

VDB-189699

EPSS

0.00228

アクティビティ

非常低い

ソース

Do you need the next level of professionalism?

Upgrade your account now!