Watchguard · Watchguard Authpoint Password Manager · CVE-2024-1417
**Name of the Vulnerable Software and Affected Versions**
WatchGuard AuthPoint Password Manager for MacOS versions before 1.0.6
**Description**
The issue is related to an Improper Neutralization of Special Elements used in a Command, also known as a 'Command Injection' vulnerability. This allows an adversary with local access to execute code under the context of the AuthPoint Password Manager application.
**Recommendations**
For versions before 1.0.6, upgrade to version 1.0.6 or later to resolve the issue.
As a temporary workaround, consider restricting access to the AuthPoint Password Manager application until a patch is applied.