Vulnerabilities > CVE-2024-42219 - Unspecified vulnerability in 1Password

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

1password

NVD

Published: 2024-08-06

Updated: 2024-08-12

Summary

1Password 8 before 8.10.36 for macOS allows local attackers to exfiltrate vault items because XPC inter-process communication validation is insufficient.

Vulnerable Configurations

Part	Description	Count
Application	1Password 1Password 1Password 8.10.0 1Password 1Password 8.10.1 1Password 1Password 8.10.3 1Password 1Password 8.10.4 1Password 1Password 8.10.6 1Password 1Password 8.10.7 1Password 1Password 8.10.8 1Password 1Password 8.10.9 1Password 1Password 8.10.12 1Password 1Password 8.10.13 1Password 1Password 8.10.15 1Password 1Password 8.10.16 1Password 1Password 8.10.18 1Password 1Password 8.10.20 1Password 1Password 8.10.22 1Password 1Password 8.10.23 1Password 1Password 8.10.24 1Password 1Password 8.10.26 1Password 1Password 8.10.27 1Password 1Password 8.10.28 1Password 1Password 8.10.30 1Password 1Password 8.10.32 1Password 1Password 8.10.33 1Password 1Password 8.10.34	24

Summary

Vulnerable Configurations

References