Isaac Ordonez

Name of the Vulnerable Software and Affected Versions: Multipass versions up to and including 1.15.1 Description: Incorrect default permissions in Canonical Multipass on macOS allow a local attacker to escalate privileges by modifying files executed with administrative privileges by a Launch Daemon during system startup. Recommendations: Update to a version later than 1.15.1.

Name of the Vulnerable Software and Affected Versions: Canon EOS Webcam Utility Pro for MAC OS version 2.3d (2.3.29) and earlier Description: The issue is related to improper directory permissions, which can be exploited by a malicious user with administrator access. This could potentially lead to code execution and privilege escalation. Recommendations: For Canon EOS Webcam Utility Pro for MAC OS versions 2.3d (2.3.29) and earlier, update to a version later than 2.3d (2.3.29) to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.