Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in osquery. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicious unsigned code will execute. This issue affects osquery prior to v3.2.7
CVSS Information
N/A
Vulnerability Type
7PK-安全功能
Vulnerability Title
Facebook osquery 安全特征问题漏洞
Vulnerability Description
Facebook osquery是美国Facebook公司的一款基于SQL的、开源的操作系统检测和监控框架。 Facebook osquery 3.2.7之前版本中存在安全漏洞,该漏洞源于恶意构造的Universal/fat二进制文件能够绕过第三方代码签名检查。攻击者可利用该漏洞执行恶意的未签名的代码。
CVSS Information
N/A
Vulnerability Type
N/A