Researchers warn macOS customers about quite a few unpatched vulnerabilities in Microsoft apps for the system. Exploiting these vulnerabilities might permit an adversary to realize delicate gadget permissions.
Quite a few Vulnerabilities In Microsoft macOS Apps Stay Unpatched
In a latest submit, Cisco Talos researchers mentioned the threats posed by exploiting unpatched vulnerabilities in Microsoft macOS apps.
As elaborated, they discovered eight completely different safety vulnerabilities affecting numerous Microsoft functions obtainable for Mac units. They detected the safety points when analyzing Microsoft apps and the exploitability of the macOS platform’s permission-based safety mannequin, which depends on the Transparency, Consent, and Management (TCC) framework. As noticed, an adversary might exploit the issues to bypass TCC controls and achieve extra permissions with out prompting customers.
Profitable exploitation of those vulnerabilities empowers an adversary to carry out any malicious actions utilizing the Microsoft apps’ permissions. These might embrace sending sneaky emails, recording audio or video on the goal system, and taking footage.
Particularly, the researchers discovered the next eight library injection vulnerabilities in numerous Microsoft apps. An attacker might exploit the flaw by injecting maliciously crafted libraries into the operating processes of goal apps to bypass current permissions.
- CVE-2024-42220 (CVSS 7.1): Impacts Microsoft Outlook 16.83.3 for macOS.
- CVE-2024-42004 (CVSS 7.1): Impacts Microsoft Groups (work or college) 24046.2813.2770.1094 for macOS.
- CVE-2024-39804 (CVSS 7.1): Impacts Microsoft PowerPoint 16.83 for macOS.
- CVE-2024-41159 (CVSS 7.1): Exists in Microsoft OneNote 16.83 for macOS.
- CVE-2024-41165 (CVSS 7.1): Impacts Microsoft Phrase 16.83 for macOS.
- CVE-2024-43106 (CVSS 7.1): Exists in Microsoft Excel 16.83 for macOS.
- CVE-2024-41145 (CVSS 7.1): Impacts WebView.app helper app of Microsoft Groups (work or college) 24046.2813.2770.1094 for macOS.
- CVE-2024-41138 (CVSS 7.1): Exists in com.microsoft.teams2.modulehost.app helper app of Microsoft Groups (work or college) 24046.2813.2770.1094 for macOS.
Microsoft Downplays The Risk
Contemplating how the permission-based mannequin in Apple macOS works, the researchers concern that an adversary might exploit all permissions granted to an app and carry out numerous malicious capabilities “on behalf of the app.”
Though macOS’s security measures, akin to hardened runtime, stop code execution by way of the method of one other software, injecting a maliciously crafted library within the goal app’s course of house opens up exploitation potentialities.
Based on Cisco Talos, Microsoft didn’t deem these unpatched vulnerabilities a possible risk. As acknowledged of their submit,
Microsoft considers these points low threat, and a few of their functions, they declare, want to permit loading of unsigned libraries to assist plugins and have declined to repair the problems.
Nonetheless, the researchers noticed some updates with Microsoft Groups WebView.app, Microsoft Groups foremost app, Microsoft Groups ModuleHost.app, and Microsoft OneNote apps for macOS, which addressed the vulnerabilities. Nonetheless, Microsoft Workplace apps (Excel, Phrase, PowerPoint, Outlook) stay susceptible.
Tell us your ideas within the feedback.