PT-2024-36614 · Tabby · Tabby
Senzee1984
·
Published
2024-12-26
·
Updated
2024-12-30
·
CVE-2024-55950
CVSS v4.0
8.6
High
| Vector | AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
Tabby versions prior to 1.0.216
Description
The Tabby terminal emulator contains overly permissive entitlements that are unnecessary for its core functionality and plugin system, creating potential security vulnerabilities. The application holds powerful permissions including camera, microphone access, and the ability to access personal folders through Apple Events. The concerning entitlements are
com.apple.security.cs.allow-dyld-environment-variables and com.apple.security.cs.disable-library-validation, which enable code injection.Recommendations
For versions prior to 1.0.216, review and remove at least one of the entitlements (
com.apple.security.cs.disable-library-validation or com.apple.security.cs.allow-dyld-environment-variables) to prevent DYLD INSERT LIBRARIES injection while maintaining full application functionality. Update to version 1.0.216 or later to fix the vulnerability.Exploit
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tabby