macOS vulnerability allowed Keychain and iOS app decryption without a password

Today at Nullcon Berlin, a researcher disclosed a macOS vulnerability (CVE-2025-24204) that allowed attackers to read the memory of any process, even with System Integrity Protection (SIP) enabled. The issue stems from Apple mistakenly granting the /usr/bin/gcore utility the com.apple.system-task-ports.read entitlement in macOS 15.0 (Sequoia). Apple removed the entitlement in macOS 15.3. Koh M. Nakagawa speaking at Nullcon Berlin 2025 This entitlement gave gcore the ability to read the memory of any process on the … More → The post macOS vulnerability allowed Keychain and iOS app decryption without a password appeared first on Help Net Security.
http://news.poseidon-us.com/TMt3Tn

macOS vulnerability allowed Keychain and iOS app decryption without a password

Like this:

Related

More Posts

Mobile Driver’s License Project Update Webinar

Introducing Microsoft Marketplace — Thousands of solutions. Millions of customers. One Marketplace.

Agent Factory: Designing the open agentic web stack

Azure Kubernetes Service Automatic: Fast and frictionless Kubernetes for all

Accelerating AI and databases with Azure Container Storage, now 7 times faster and open source

Supreme Court keeps in place Trump funding freeze that threatens billions of dollars in foreign aid

Census Bureau to test using postal workers as census takers in 2030 field trials next year

New tool: convert-ts-bash-history.py, (Fri, Sep 26th)

CENTCOM launches Rapid Employment Joint Task Force to speed tech delivery

CENTCOM launches Rapid Employment Joint Task Force to speed tech delivery

Share this:

Like this:

Related

More Posts