Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
X1a0He Adobe Downloader XPC Service com.x1a0he.macOS.Adobe-Downloader.helper shouldAcceptNewConnection privileges management
Vulnerability Description
A vulnerability, which was classified as critical, was found in X1a0He Adobe Downloader up to 1.3.1 on macOS. Affected is the function shouldAcceptNewConnection of the file com.x1a0he.macOS.Adobe-Downloader.helper of the component XPC Service. The manipulation leads to improper privilege management. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. This product is not affiliated with the company Adobe.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
特权管理不恰当
Vulnerability Title
Adobe Downloader 安全漏洞
Vulnerability Description
Adobe Downloader是X1a0He个人开发者的一个 macOS Adobe 应用程序下载和安装程序。 Adobe Downloader 1.3.1版本及之前版本存在安全漏洞,该漏洞源于XPC Service组件的shouldAcceptNewConnection函数包含一个权限管理问题。
CVSS Information
N/A
Vulnerability Type
N/A