CVE-2019-13014

EPSS 0.4%CWE-264

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

23 Aug 2019Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Little Snitch versions 4.4.0 fixes a vulnerability in a privileged helper tool. However, the operating system may have made a copy of the privileged helper which is not removed or updated immediately. Computers may therefore still be vulnerable after upgrading to 4.4.0. Version 4.4.1 fixes this issue by removing the operating system's copy during the upgrade.

Affected products

n/a · Little Snitch

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://obdev.at/cve/2019-13014-MzE24Ify4p.html