CVE-2019-8656

Published: Oct 27, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

This was addressed with additional checks by Gatekeeper on files mounted through a network share. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. Extracting a zip file containing a symbolic link to an endpoint in an NFS mount that is attacker controlled may bypass Gatekeeper.

Vendor	Product	Versions
Apple	macOS	affected `unspecified - < 10.14`

References

https://support.apple.com/en-us/HT210348

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-8656

Description

Affected Products

References