Process injection: breaking all macOS security layers with a single vulnerability

0
25

Process injection: breaking all macOS security layers with a single vulnerability

If you have created a new macOS app with Xcode 13.2, you may noticed this new method in the template:

– ( BOOL ) applicationSupportsSecureRestorableState: ( NSApplication * ) app { return YES ; }

This was added to the Xcode template to address a process injection vulnerability we reported!

In macOS 12.0.1 Monterey, Apple fixed CVE-2021-30873. This was a process injection vulnerability affecting (essentially) al…

Read More