| 4886 | File Disclosure via .DS_Store file (macOS) |
Directory listing |
Meta / Facebook |
Omar Espino (@omespino) |
Bug Bounty | 2018-01-23 | 2023-06-13 |
| 3445 | Exploring macOS Calendar Alerts: Part 1 – Attempting to execute code |
Information disclosure |
Apple |
Andy Grant |
Bug Bounty | 2020-05-28 | 2023-06-13 |
| 3411 | Local Privilege Escalation Discovered in VMware Fusion |
Local Privilege Escalation
MacOS |
VMware |
Rich Mirch (@0xm1rch) |
Bug Bounty | 2020-06-09 | 2023-06-13 |
| 3278 | Exploiting popular macOS apps with a single “.terminal” file. |
MacOS
File Quarantine bypass |
Internet Bug Bounty
Slack
Keybase
Telegram |
Vladimir Metnew (@vladimir_metnew) |
Bug Bounty | 2020-07-27 | 2023-06-13 |
| 3277 | CVE-2020–9934: Bypassing the macOS Transparency, Consent, and Control (TCC) Framework for unauthorized access to sensitive user data |
MacOS
Local Privilege Escalation
Authorization flaw |
Apple |
Matt Shockley (@mattshockl) |
Bug Bounty | 2020-07-27 | 2023-06-13 |
| 3256 | CVE-2020–9854: "Unauthd" |
MacOS
Local Privilege Escalation
SIP bypass |
Apple (macOS) |
Ilias Morad (@A2nkF_) |
Bug Bounty | 2020-08-01 | 2023-06-13 |
| 2773 | CVE-2021-23827: Sakura Samurai discover cleartext pictures in Keybase Desktop Client; Windows, macOS, Linux |
Unencrypted storage |
Keybase |
John Jackson (@johnjhacking) |
Bug Bounty | 2021-02-22 | 2023-06-13 |
| 2677 | Zero click vulnerability in Apple’s macOS Mail |
Account takeover
Information disclosure
RCE |
Apple |
Mikko Kenttälä (@Turmio_) |
Bug Bounty | 2021-04-01 | 2023-06-13 |
| 2670 | This Man Thought Opening A TXT File Is Fine, He Thought Wrong. MacOS CVE-2019-8761 |
MacOS
HTML injection |
Apple |
Paulos Yibelo (@PaulosYibelo) |
Bug Bounty | 2021-04-02 | 2023-06-13 |
| 2574 | CVE-2021-1815 – MacOS Local Privilege Escalation Via Preferences |
Local Privilege Escalation |
Apple |
Offensive Security (@offsectraining) |
Bug Bounty | 2021-05-06 | 2023-06-13 |
| 2258 | Play the music and bypass TCC aka CVE-2020-29621 |
Privacy issue
MacOS |
Apple |
Wojciech Reguła (@_r3ggi) |
Bug Bounty | 2021-09-02 | 2023-06-13 |
| 2236 | Change home directory and bypass TCC aka CVE-2020-27937 |
Privacy issue
MacOS |
Apple |
Wojciech Reguła (@_r3ggi) |
Bug Bounty | 2021-09-09 | 2023-06-13 |
| 2198 | Facebook Messenger for MacOS contained valid hardcoded FB access token (employee%27s token?) |
Hardcoded credentials |
Meta / Facebook |
Dzmitry Lukyanenka (@vulnano) |
Bug Bounty | 2021-09-23 | 2023-06-13 |
| 2189 | CVE-2021-39246 – Tor Browser through 10.5.6 and 11.x through 11.0a4 allows a correlation attack excessive verbose logging – Windows, macOS, Linux |
Verbose logging |
Tor |
sickcodes (@sickcodes) |
Bug Bounty | 2021-09-27 | 2023-06-13 |
| 2147 | Write Up – Google VRP N/A: Arbitrary Local File Read (Macos) Via <a> Tag And Null Byte (%00) In Google Earth Pro Desktop App |
Local File Read |
Google |
Omar Espino (@omespino) |
Bug Bounty | 2021-10-14 | 2023-06-13 |
| 2113 | Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection |
SIP bypass
Local Privilege Escalation |
Apple |
Microsoft Security Vulnerability Research (MSVR) |
Bug Bounty | 2021-10-28 | 2023-06-13 |
| 2105 | A Technical Analysis of CVE-2021-30864: Bypassing App Sandbox Restrictions |
Local Privilege Escalation
MacOS |
Apple |
Perception Point (@PerceptionPo1nt) |
Bug Bounty | 2021-11-03 | 2023-06-13 |
| 1997 | Bypassing the macOS Gatekeeper |
Local Privilege Escalation
Gatekeeper bypass
MacOS |
Apple |
Ron Masas (@RonMasas) |
Bug Bounty | 2021-12-15 | 2023-06-13 |
| 1982 | SSD Advisory – Rocket.Chat Client-side Remote Code Execution |
RCE
MacOS |
Rocket.Chat |
- |
Bug Bounty | 2021-12-21 | 2023-06-13 |
| 1979 | Sandbox escape + privilege escalation in StorePrivilegedTaskService |
Local Privilege Escalation
MacOS |
Apple |
Sector 7 (@sector7_nl) |
Bug Bounty | 2021-12-21 | 2023-06-13 |
| 1930 | New macOS vulnerability, “powerdir,” could lead to unauthorized user data access |
Privacy issue
MacOS |
Apple |
Microsoft 365 Defender Research Team |
Bug Bounty | 2022-01-10 | 2023-06-13 |
| 1887 | Technical Analysis of CVE-2022-22583: Bypassing macOS System Integrity Protection (SIP) |
MacOS
SIP bypass |
Apple |
Perception Point |
Bug Bounty | 2022-01-27 | 2023-06-13 |
| 1870 | Microsoft OneDrive For Macos Local Privilege Escalation |
Local Privilege Escalation
MacOS |
Microsoft |
Offensive Security (@offsectraining) |
Bug Bounty | 2022-01-31 | 2023-06-13 |
| 1733 | How a macOS bug could have allowed for a serious phishing attack against users |
MacOS
Phishing |
Apple |
Guilherme Rambo (@_inside) |
Bug Bounty | 2022-03-14 | 2023-06-13 |
| 1730 | CVE-2022-22616: Simple way to bypass GateKeeper, hidden for years |
Local Privilege Escalation
GateKeeper bypass
MacOS |
Apple |
Mickey Jin (@patch1t) |
Bug Bounty | 2022-03-15 | 2023-06-13 |
