First published: Wed Dec 16 2020(Updated: )
The installer of the macOS Sensor for VMware Carbon Black Cloud (prior to 3.5.1) handles certain files in an insecure way. A malicious actor who has local access to the endpoint on which a macOS sensor is going to be installed, may overwrite a limited number of files with output from the sensor installation.
Credit: security@vmware.com
Affected Software | Affected Version | How to fix |
---|---|---|
VMware Carbon Black Cloud | <3.5.1 | |
Apple macOS |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.