Write-ups

Check The Published Writeups

WDBTitleTagsProgramsAuthorsTypePublicationAdded
4886File Disclosure via .DS_Store file (macOS) Directory listing Meta / Facebook Omar Espino (@omespino) Bug Bounty2018-01-232023-06-13
3445Exploring macOS Calendar Alerts: Part 1 – Attempting to execute code Information disclosure Apple Andy Grant Bug Bounty2020-05-282023-06-13
3411Local Privilege Escalation Discovered in VMware Fusion Local Privilege Escalation MacOS VMware Rich Mirch (@0xm1rch) Bug Bounty2020-06-092023-06-13
3278Exploiting popular macOS apps with a single “.terminal” file. MacOS File Quarantine bypass Internet Bug Bounty Slack Keybase Telegram Vladimir Metnew (@vladimir_metnew) Bug Bounty2020-07-272023-06-13
3277CVE-2020–9934: Bypassing the macOS Transparency, Consent, and Control (TCC) Framework for unauthorized access to sensitive user data MacOS Local Privilege Escalation Authorization flaw Apple Matt Shockley (@mattshockl) Bug Bounty2020-07-272023-06-13
3256CVE-2020–9854: "Unauthd" MacOS Local Privilege Escalation SIP bypass Apple (macOS) Ilias Morad (@A2nkF_) Bug Bounty2020-08-012023-06-13
2773CVE-2021-23827: Sakura Samurai discover cleartext pictures in Keybase Desktop Client; Windows, macOS, Linux Unencrypted storage Keybase John Jackson (@johnjhacking) Bug Bounty2021-02-222023-06-13
2677Zero click vulnerability in Apple’s macOS Mail Account takeover Information disclosure RCE Apple Mikko Kenttälä (@Turmio_) Bug Bounty2021-04-012023-06-13
2670This Man Thought Opening A TXT File Is Fine, He Thought Wrong. MacOS CVE-2019-8761 MacOS HTML injection Apple Paulos Yibelo (@PaulosYibelo) Bug Bounty2021-04-022023-06-13
2574CVE-2021-1815 – MacOS Local Privilege Escalation Via Preferences Local Privilege Escalation Apple Offensive Security (@offsectraining) Bug Bounty2021-05-062023-06-13
2258Play the music and bypass TCC aka CVE-2020-29621 Privacy issue MacOS Apple Wojciech Reguła (@_r3ggi) Bug Bounty2021-09-022023-06-13
2236Change home directory and bypass TCC aka CVE-2020-27937 Privacy issue MacOS Apple Wojciech Reguła (@_r3ggi) Bug Bounty2021-09-092023-06-13
2198Facebook Messenger for MacOS contained valid hardcoded FB access token (employee%27s token?) Hardcoded credentials Meta / Facebook Dzmitry Lukyanenka (@vulnano) Bug Bounty2021-09-232023-06-13
2189CVE-2021-39246 – Tor Browser through 10.5.6 and 11.x through 11.0a4 allows a correlation attack excessive verbose logging – Windows, macOS, Linux Verbose logging Tor sickcodes (@sickcodes) Bug Bounty2021-09-272023-06-13
2147Write Up – Google VRP N/A: Arbitrary Local File Read (Macos) Via <a> Tag And Null Byte (%00) In Google Earth Pro Desktop App Local File Read Google Omar Espino (@omespino) Bug Bounty2021-10-142023-06-13
2113Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection SIP bypass Local Privilege Escalation Apple Microsoft Security Vulnerability Research (MSVR) Bug Bounty2021-10-282023-06-13
2105A Technical Analysis of CVE-2021-30864: Bypassing App Sandbox Restrictions Local Privilege Escalation MacOS Apple Perception Point (@PerceptionPo1nt) Bug Bounty2021-11-032023-06-13
1997Bypassing the macOS Gatekeeper Local Privilege Escalation Gatekeeper bypass MacOS Apple Ron Masas (@RonMasas) Bug Bounty2021-12-152023-06-13
1982SSD Advisory – Rocket.Chat Client-side Remote Code Execution RCE MacOS Rocket.Chat - Bug Bounty2021-12-212023-06-13
1979Sandbox escape + privilege escalation in StorePrivilegedTaskService Local Privilege Escalation MacOS Apple Sector 7 (@sector7_nl) Bug Bounty2021-12-212023-06-13
1930New macOS vulnerability, “powerdir,” could lead to unauthorized user data access Privacy issue MacOS Apple Microsoft 365 Defender Research Team Bug Bounty2022-01-102023-06-13
1887Technical Analysis of CVE-2022-22583: Bypassing macOS System Integrity Protection (SIP) MacOS SIP bypass Apple Perception Point Bug Bounty2022-01-272023-06-13
1870Microsoft OneDrive For Macos Local Privilege Escalation Local Privilege Escalation MacOS Microsoft Offensive Security (@offsectraining) Bug Bounty2022-01-312023-06-13
1733How a macOS bug could have allowed for a serious phishing attack against users MacOS Phishing Apple Guilherme Rambo (@_inside) Bug Bounty2022-03-142023-06-13
1730CVE-2022-22616: Simple way to bypass GateKeeper, hidden for years Local Privilege Escalation GateKeeper bypass MacOS Apple Mickey Jin (@patch1t) Bug Bounty2022-03-152023-06-13