Cees Elzinga

**Name of the Vulnerable Software and Affected Versions** macOS Big Sur versions prior to 11.7.3 macOS Monterey versions prior to 12.6.3 macOS Ventura versions prior to 13.2 watchOS versions prior to 9.3 tvOS versions prior to 16.3 iOS versions prior to 16.3 iPadOS versions prior to 16.3 **Description** This issue allows an app to access user-sensitive data. The issue was addressed by enabling hardened runtime. **Recommendations** For macOS Big Sur, update to version 11.7.3 to resolve the issue. For macOS Monterey, update to version 12.6.3 to resolve the issue. For macOS Ventura, update to version 13.2 to resolve the issue. For watchOS, update to version 9.3 to resolve the issue. For tvOS, update to version 16.3 to resolve the issue. For iOS, update to version 16.3 to resolve the issue. For iPadOS, update to version 16.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** watchOS versions prior to 9.3 tvOS versions prior to 16.3 macOS Ventura versions prior to 13.2 iOS versions prior to 16.3 iPadOS versions prior to 16.3 **Description** A race condition issue was addressed with additional validation, which may allow a user to read arbitrary files as root. This issue is related to synchronization errors when using a shared resource, also known as a race condition. **Recommendations** For watchOS versions prior to 9.3, update to watchOS 9.3 to resolve the issue. For tvOS versions prior to 16.3, update to tvOS 16.3 to resolve the issue. For macOS Ventura versions prior to 13.2, update to macOS Ventura 13.2 to resolve the issue. For iOS versions prior to 16.3, update to iOS 16.3 to resolve the issue. For iPadOS versions prior to 16.3, update to iPadOS 16.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Antivirus for Mac versions 11.0.2150 and below **Description** A link following privilege escalation issue could allow a local attacker to modify a file during the update process and escalate their privileges. The attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this issue. The vulnerability is related to incorrect link resolution before accessing a file. **Recommendations** For versions 11.0.2150 and below, update to a version above 11.0.2150 to resolve the issue. As a temporary workaround, consider restricting access to the update process until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Antivirus for Mac version 11.5 **Description** A link following issue in Trend Micro Antivirus for Mac could allow an attacker to create a specially-crafted file as a symlink, potentially leading to privilege escalation. The attacker must have at least low-level privileges on the system to attempt to exploit this issue. The vulnerability is related to errors in link processing in the libTmUtil dylib component, which could allow a remote attacker to elevate their privileges and execute arbitrary code. **Recommendations** For Trend Micro Antivirus for Mac version 11.5, consider disabling the link following functionality as a temporary workaround until a patch is available. Restrict access to the libTmUtil dylib component to minimize the risk of exploitation. Avoid using the vulnerable component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 14.5 iPadOS versions prior to 14.5 Description: The issue allows an application to potentially gain elevated privileges due to inadequate checks. Recommendations: For iOS versions prior to 14.5, update to iOS 14.5 or later to resolve the issue. For iPadOS versions prior to 14.5, update to iPadOS 14.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 15.1 iPadOS versions prior to 15.1 macOS Monterey versions prior to 12.0.1 tvOS versions prior to 15.1 watchOS versions prior to 8.1 macOS Big Sur versions prior to 11.6.1 **Description** A local attacker may be able to elevate their privileges due to an issue that has been addressed with improved checks. **Recommendations** For iOS versions prior to 15.1, update to iOS 15.1 or later. For iPadOS versions prior to 15.1, update to iPadOS 15.1 or later. For macOS Monterey versions prior to 12.0.1, update to macOS Monterey 12.0.1 or later. For tvOS versions prior to 15.1, update to tvOS 15.1 or later. For watchOS versions prior to 8.1, update to watchOS 8.1 or later. For macOS Big Sur versions prior to 11.6.1, update to macOS Big Sur 11.6.1 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 11.4 tvOS versions prior to 14.6 watchOS versions prior to 7.5 iOS versions prior to 14.6 iPadOS versions prior to 14.6 **Description** A logic issue was addressed with improved state management, which could allow a malicious application to modify protected parts of the file system. The issue is related to insufficient access control in the Crash Reporter component of the operating systems, potentially enabling an attacker to modify arbitrary files. **Recommendations** For macOS versions prior to 11.4, update to macOS Big Sur 11.4 to resolve the issue. For tvOS versions prior to 14.6, update to tvOS 14.6 to resolve the issue. For watchOS versions prior to 7.5, update to watchOS 7.5 to resolve the issue. For iOS versions prior to 14.6, update to iOS 14.6 to resolve the issue. For iPadOS versions prior to 14.6, update to iPadOS 14.6 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: macOS Catalina versions prior to Security Update 2021-002 macOS Mojave versions prior to Security Update 2021-003 iOS versions prior to 14.5 iPadOS versions prior to 14.5 watchOS versions prior to 7.4 tvOS versions prior to 14.5 macOS Big Sur versions prior to 11.3 Description: A validation issue was addressed with improved logic, which may allow a malicious application to gain root privileges. Recommendations: For macOS Catalina, apply Security Update 2021-002. For macOS Mojave, apply Security Update 2021-003. For iOS, update to version 14.5 or later. For iPadOS, update to version 14.5 or later. For watchOS, update to version 7.4 or later. For tvOS, update to version 14.5 or later. For macOS Big Sur, update to version 11.3 or later.

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.2 Security Update versions prior to 2021-001 Catalina Security Update versions prior to 2021-001 Mojave watchOS versions prior to 7.3 tvOS versions prior to 14.4 iOS versions prior to 14.4 iPadOS versions prior to 14.4 Description: A remote attacker may be able to cause a denial of service due to this issue. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited. Recommendations: For macOS versions prior to 11.2, update to macOS Big Sur 11.2. For Security Update versions prior to 2021-001 Catalina, apply Security Update 2021-001 Catalina. For Security Update versions prior to 2021-001 Mojave, apply Security Update 2021-001 Mojave. For watchOS versions prior to 7.3, update to watchOS 7.3. For tvOS versions prior to 14.4, update to tvOS 14.4. For iOS versions prior to 14.4, update to iOS 14.4. For iPadOS versions prior to 14.4, update to iPadOS 14.4.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Antivirus for Mac 2020 (Consumer) **Description** The issue allows kernel pointers and debug messages to leak to userland if exploited. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this issue. **Recommendations** For Trend Micro Antivirus for Mac 2020 (Consumer), at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Antivirus for Mac 2020 (Consumer) **Description** The issue is related to a race condition in the Web Threat Protection Blocklist component. If exploited, it could allow an attacker to cause a kernel panic or crash. To exploit this, an attacker must first obtain the ability to execute high-privileged code on the target system. **Recommendations** For Trend Micro Antivirus for Mac 2020 (Consumer), consider restricting access to high-privileged code execution on the target system until a patch is available. As a temporary workaround, consider disabling the Web Threat Protection Blocklist component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 13.6 iPadOS versions prior to 13.6 macOS Catalina versions prior to 10.15.6 tvOS versions prior to 13.4.8 watchOS versions prior to 6.2.8 **Description** An issue existed within the path validation logic for symlinks, which was addressed with improved path sanitization. A local attacker may be able to elevate their privileges. **Recommendations** For iOS versions prior to 13.6, update to iOS 13.6 or later. For iPadOS versions prior to 13.6, update to iPadOS 13.6 or later. For macOS Catalina versions prior to 10.15.6, update to macOS Catalina 10.15.6 or later. For tvOS versions prior to 13.4.8, update to tvOS 13.4.8 or later. For watchOS versions prior to 6.2.8, update to watchOS 6.2.8 or later.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Antivirus for Mac 2020 (Consumer) **Description** The issue allows an attacker to bypass the Web Threat Protection feature through a specific kernel extension request attack. This requires user interaction, where the target must either visit a malicious page or open a malicious file. **Recommendations** For Trend Micro Antivirus for Mac 2020 (Consumer), consider restricting access to potentially malicious web pages and files until a patch is available. As a temporary workaround, avoid interacting with suspicious links or files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Antivirus for Mac 2020 (Consumer) **Description** The issue occurs due to improper access control in the product's webserver API, allowing an attacker to read and write sensitive product and user data. To exploit this, an attacker must first obtain the ability to execute low-privileged code on the target system. **Recommendations** For Trend Micro Antivirus for Mac 2020 (Consumer), consider restricting access to the webserver API until a patch is available. As a temporary workaround, limit the ability to execute low-privileged code on the target system to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Antivirus for Mac 2020 (Consumer) **Description** The issue allows an attacker to leak several bytes of memory by supplying a kernel pointer, but the attacker must first obtain the ability to execute high-privileged code on the target system. **Recommendations** For Trend Micro Antivirus for Mac 2020 (Consumer), at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Antivirus for Mac 2020 (Consumer) **Description** The issue allows an attacker to perform a symbolic link privilege escalation attack, potentially exploiting a critical file on the system to escalate their privileges. To exploit this, an attacker must first obtain the ability to execute low-privileged code on the target system. **Recommendations** For Trend Micro Antivirus for Mac 2020 (Consumer), consider restricting access to critical system files until a patch is available. As a temporary workaround, limit the execution of low-privileged code on the target system to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: VMware Fusion versions 11.x before 11.5.5 VMware Remote Console for Mac versions 11.x and prior before 11.2.0 Horizon Client for Mac versions 5.x and prior before 5.4.3 Description: The issue is related to improper XPC Client validation, which may allow attackers with normal user privileges to escalate their privileges to root on the system. This is a privilege escalation issue due to unsafe privilege management. Recommendations: For VMware Fusion versions 11.x before 11.5.5, update to version 11.5.5 or later. For VMware Remote Console for Mac versions 11.x and prior before 11.2.0, update to version 11.2.0 or later. For Horizon Client for Mac versions 5.x and prior before 5.4.3, update to version 5.4.3 or later.