In macOS 12.0.1 Monterey, Apple fixed a process injection vulnerability CVE-2021-30873. The vulnerability affects all macOS AppKit-based apps, and the researchers exploited the vulnerability to escape sandboxes , escalate root privileges, and bypass SIP filesystem restrictions. Process injection refers to the ability of one process to execute code in another process. In Windows, it is exploited to evade detection by anti-virus scanners. In macOS, it has a greater impact due to the different permissions of the two applications.
This article is reprinted from: https://www.solidot.org/story?sid=72465
This site is for inclusion only, and the copyright belongs to the original author.