CPE
medium
advisory
macOS TCC Database Modification for Privacy Control Bypass
2 rules 2 TTPs 1 CVEAdversaries may attempt to bypass macOS privacy controls by directly modifying the Transparency, Consent, and Control (TCC) SQLite database using sqlite3, potentially gaining unauthorized access to sensitive resources.
macOS
privacy-bypass
defense-evasion
2r
2t
1c
critical
threat
CVE-2024-23222 Apple Safari Type Confusion Leading to Sandbox Escape
2 rules 2 TTPs 1 CVE 1 IOCA type confusion vulnerability exists in Apple Safari, as detailed in CVE-2024-23222. A public exploit demonstrates successful exploitation of the vulnerability on iOS 16.4.1, leading to a sandbox escape, which has been patched in iOS 17.3 and macOS 14.3.
Safari
cve-2024-23222
type-confusion
sandbox-escape
webkit
2r
2t
1c
1i