macOS vulnerability allowed Keychain and iOS app decryption without a password

Today at Nullcon Berlin, a researcher disclosed a macOS vulnerability (CVE-2025-24204) that allowed attackers to read the memory of any process, even with System Integrity Protection (SIP) enabled. The issue stems from Apple mistakenly granting the /usr/bin/gcore utility the com.apple.system-task-ports.read entitlement in macOS 15.0 (Sequoia). Apple removed the entitlement in macOS 15.3. Koh M. Nakagawa speaking at Nullcon Berlin 2025 This entitlement gave gcore the ability to read the memory of any process on the … More → The post macOS vulnerability allowed Keychain and iOS app decryption without a password appeared first on Help Net Security.
http://news.poseidon-us.com/TMt3Tn

macOS vulnerability allowed Keychain and iOS app decryption without a password

Like this:

Related

More Posts

Using military lawyers as immigration judges sets precedent with no limits

What do fading unions, and a funding fight mean for the federal workforce?

What do fading unions, and a funding fight mean for the federal workforce?

Expert Edition: Getting AI-ready: How to prepare data to scale successfully

Expert Edition: Getting AI-ready: How to prepare data to scale successfully

DOE’s latest cohort of innovators is turning science into startups

DOE’s latest cohort of innovators is turning science into startups

ISC Stormcast For Thursday, September 4th, 2025 https://isc.sans.edu/podcastdetail/9598, (Thu, Sep 4th)

Google fixes actively exploited Android vulnerabilities (CVE-2025-48543, CVE-2025-38352)

CyberFlex: Flexible Pen testing as a Service with EASM

Share this:

Like this:

Related

More Posts