漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
ClearanceKit: opfilter policy bypass via exchangedata and clone operations
Vulnerability Description
ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies. Prior to version 4.2.4, two file operation event types — ES_EVENT_TYPE_AUTH_EXCHANGEDATA and ES_EVENT_TYPE_AUTH_CLONE — were not intercepted by ClearanceKit's opfilter system extension, allowing local processes to bypass file access policies. Commit 6181c4a patches the vulnerability by subscribing to both event types and routing them through the existing policy evaluator. Users must upgrade to v4.2.4 or later and reactivate the system extension.
CVSS Information
N/A
Vulnerability Type
授权机制缺失
Vulnerability Title
ClearanceKit 安全漏洞
Vulnerability Description
ClearanceKit是Craig J. Bass个人开发者的一个macOS文件系统访问控制工具。 ClearanceKit 4.2.4之前版本存在安全漏洞,该漏洞源于未拦截ES_EVENT_TYPE_AUTH_EXCHANGEDATA和ES_EVENT_TYPE_AUTH_CLONE事件,可能导致绕过文件访问策略。
CVSS Information
N/A
Vulnerability Type
N/A