CVE-2020-9771 is not fixed correctly (2020)

CVE-2020-9771 is not fixed correctly (2020)(theevilbit.github.io)

73 points by adib 4 years ago | 4 comments

hashhar 4 years ago |

Wow. A "wontfix" for such a critical bug?

I just checked and there are quite a few apps that I've had to give full disk access to - some of which include applications running remote code or reading data from untrusted usb devices device.

Wonder what could go wrong.

f3d46600-b66e 4 years ago |

Full disk access bypassing user permissions ... Is bad, even if "full disk access" to the app was indeed given.

This is not obvious when you allow terminal (or any other app) the disk access.

TheSwordsman 4 years ago |

Too bad this was posted on a US holiday weekend. :(

pengaru 4 years ago | |

[2020]