漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
XADMaster may not apply quarantine attribute correctly to extracted files
Vulnerability Description
XADMaster is an objective-C library for archive and file unarchiving and extraction. When extracting a specially crafted zip archive XADMaster may not apply quarantine attribute correctly. Such behaviour may circumvent Gatekeeper checks on the system. Only macOS installations are affected. This issue was fixed in XADMaster 1.10.8. It is recommended to upgrade to the latest version. There are no known workarounds for this issue.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Vulnerability Type
权限预留不恰当
Vulnerability Title
XADMaster 安全漏洞
Vulnerability Description
MacPaw XADMaster是乌克兰MacPaw公司的一个库。 XADMaster 1.10.8版本存在安全漏洞,该漏洞源于提取特制的 zip 存档时,XADMaster 可能无法正确应用隔离属性,可能会绕过 Gatekeeper 对系统的检查。
CVSS Information
N/A
Vulnerability Type
N/A