Local Privilege Escalation Vulnerability in Little Snitch Versions 4.3.0 to 4.3.2

Local Privilege Escalation Vulnerability in Little Snitch Versions 4.3.0 to 4.3.2

CVE-2019-13013 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Little Snitch versions 4.3.0 to 4.3.2 have a local privilege escalation vulnerability in their privileged helper tool. The privileged helper tool implements an XPC interface which is available to any process and allows directory listings and copying files as root.

Learn more about our Web Application Penetration Testing UK.