Mykola Grymalyuk

**Name of the Vulnerable Software and Affected Versions** QVPN Device Client for Mac versions prior to 2.2.5 Qsync for Mac versions prior to 5.1.3 Qfinder Pro Mac versions prior to 7.11.1 **Description** A time-of-check time-of-use (TOCTOU) race condition issue has been reported, which could allow local attackers with user access to gain unauthorized access to resources. **Recommendations** For QVPN Device Client for Mac versions prior to 2.2.5, update to version 2.2.5 or later. For Qsync for Mac versions prior to 5.1.3, update to version 5.1.3 or later. For Qfinder Pro Mac versions prior to 7.11.1, update to version 7.11.1 or later.

Name of the Vulnerable Software and Affected Versions: VMware Fusion versions 13.x before 13.6 Description: The issue is related to insufficient input validation, allowing an attacker to execute arbitrary code in the context of the Fusion application. A malicious actor with standard user privileges may exploit this vulnerability to execute code within Fusion. The root cause is an insecure environment variable. Recommendations: Update VMware Fusion to version 13.6 on all macOS systems immediately.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Sonoma 14.5 macOS versions 14.5 Beta 1 (23F5049f) and older macOS versions 13.6.6 (22G630) and older macOS versions 12.7.4 (21H1123) and older macOS versions 11 and earlier **Description** A logic issue was identified and addressed through improved restrictions. This issue could allow an application to gain root privileges. Multiple sources confirm the availability of proof-of-concept (PoC) code for exploitation. The vulnerability affects multiple macOS versions. **Recommendations** Update to macOS Sonoma version 14.5 or later. Update to macOS Sonoma version 14.5 or later if running versions prior to 14.5 Beta 1 (23F5049f). Update to macOS Sonoma version 14.5 or later if running versions prior to 13.6.6 (22G630). Update to macOS Sonoma version 14.5 or later if running versions prior to 12.7.4 (21H1123). Update to macOS Sonoma version 14.5 or later if running any version of macOS 11 or earlier.

**Name of the Vulnerable Software and Affected Versions** Jamf Compliance Editor versions prior to 1.3.1 **Description** The issue concerns a local privilege escalation in the XPC service within the audit functionality of Jamf Compliance Editor on macOS. **Recommendations** For versions prior to 1.3.1, update to version 1.3.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** ClickUp Desktop versions prior to 3.3.77 **Description** The issue allows code injection due to specific Electron Fuses, with inadequate protection against code injection through settings such as `RunAsNode`. This affects both macOS and Windows versions. With over 10 million users, the risk of exploitation is significant, potentially allowing local attackers to access sensitive data. **Recommendations** For ClickUp Desktop versions prior to 3.3.77, update to version 3.3.77 or later to resolve the issue. As a temporary workaround, consider restricting access to settings such as `RunAsNode` to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OpenVPN Connect versions 3.0 through 3.4.3 (Windows) OpenVPN Connect versions 3.0 through 3.4.7 (macOS) **Description** The issue is related to the nodejs framework in OpenVPN Connect, which was not properly configured. This configuration issue allows a local user to execute arbitrary code within the nodejs process context via the `ELECTRON RUN AS NODE` environment variable. The vulnerability is also described as being related to the failure to neutralize instructions in dynamically executed code, which can allow an attacker to execute arbitrary code. **Recommendations** For OpenVPN Connect versions 3.0 through 3.4.3 (Windows), update to a version later than 3.4.3. For OpenVPN Connect versions 3.0 through 3.4.7 (macOS), update to a version later than 3.4.7. As a temporary workaround, consider restricting access to the `ELECTRON RUN AS NODE` environment variable to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Studio Network Solutions ShareBrowser versions prior to 7.0 **Description** The issue is related to the mishandling of signature verification in Studio Network Solutions ShareBrowser on macOS. **Recommendations** For versions prior to 7.0, update to version 7.0 or later to resolve the issue.