Security News > 2022 > January > Microsoft Details macOS Bug That Could Let Attackers Gain Access to User Data

Microsoft Details macOS Bug That Could Let Attackers Gain Access to User Data
2022-01-11 02:41

Microsoft on Monday disclosed details of a recently patched security vulnerability in Apple's macOS operating system that could be weaponized by a threat actor to expose users' personal information.

Tracked as CVE-2021-30970, the flaw concerns a logic issue in the Transparency, Consent and Control security framework, which enables users to configure the privacy settings of their apps and provide access to protected files and app data.

The Security & Privacy pane in the macOS System Preferences app serves as the front end of TCC. Microsoft 365 Defender Research Team, which reported the flaw to Apple on July 15, 2021, dubbed the flaw "Powerdir." Apple addressed the issue as part of macOS 11.6 and 12.1 updates released in December 2021 with improved state management.

While Apple does enforce a policy that limits access to TCC to only apps with full disk access, it's possible to orchestrate an attack wherein a malicious application could work around its privacy preferences to retrieve sensitive information from the machine, potentially allowing an adversary to access microphone to record private conversations or capture screenshots of sensitive information displayed on the user's screen.

In other words, if a bad actor gains full disk access to the TCC databases, the intruder could edit it to grant arbitrary permissions to any app of their choice, including their own, effectively permitting the app run with configurations previously not consented to.

Then in May 2021, the company also patched a then zero-day flaw in the same component that could allow an attacker to gain full disk access, screen recording, or other permissions without users' explicit consent.


News URL

https://thehackernews.com/2022/01/microsoft-details-macos-bug-that-could.html

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2021-08-24 CVE-2021-30970 Unspecified vulnerability in Apple Macos
A logic issue was addressed with improved state management.
local
low complexity
apple
5.5

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 365 50 1369 2819 161 4399