CVE-2024-55968
Published Jan 28, 2025
Last updated 9 days ago
- Description
- An issue was discovered in DTEX DEC-M (DTEX Forwarder) 6.1.1. The com.dtexsystems.helper service, responsible for handling privileged operations within the macOS DTEX Event Forwarder agent, fails to implement critical client validation during XPC interprocess communication (IPC). Specifically, the service does not verify the code requirements, entitlements, security flags, or version of any client attempting to establish a connection. This lack of proper logic validation allows malicious actors to exploit the service's methods via unauthorized client connections, and escalate privileges to root by abusing the DTConnectionHelperProtocol protocol's submitQuery method over an unauthorized XPC connection.
- Source
- cve@mitre.org
- NVD status
- Awaiting Analysis
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-798
- Hype score
- Not currently trending
CVE-2024-55968 An issue was discovered in DTEX DEC-M (DTEX Forwarder) 6.1.1. The com.dtexsystems.helper service, responsible for handling privileged operations within the macOS DTEX… https://t.co/SkC4UKGG4e
@CVEnew
28 Jan 2025
364 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-55968 CVE-2024-55968 Exploit POC Code for CVE-2024-55968 Description This repo hosts a POC to a critical logic vulnerability in the DTEX Event Reporting Service. DTEX is a unified insider risk management ... https://t.co/qDCfEdPGZ3
@VulmonFeeds
17 Dec 2024
30 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes