Vulnerabilities (CVE)

Filtered by vendor Cryptomator Subscribe
Filtered by product Cryptomator
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-37907 1 Cryptomator 1 Cryptomator 2024-02-28 N/A 7.8 HIGH
Cryptomator is data encryption software for users who store their files in the cloud. Prior to version 1.9.2, the MSI installer provided on the homepage allows local privilege escalation (LPE) for low privileged users, if already installed. The problem occurs as the repair function of the MSI spawns two administrative CMDs. A simple LPE is possible via a breakout. Version 1.9.2 fixes this issue.
CVE-2023-39520 1 Cryptomator 1 Cryptomator 2024-02-28 N/A 7.8 HIGH
Cryptomator encrypts data being stored on cloud infrastructure. The MSI installer provided on the homepage for Cryptomator version 1.9.2 allows local privilege escalation for low privileged users, via the `repair` function. The problem occurs as the repair function of the MSI is spawning an SYSTEM Powershell without the `-NoProfile` parameter. Therefore the profile of the user starting the repair will be loaded. Version 1.9.3 contains a fix for this issue. Adding a `-NoProfile` to the powershell is a possible workaround.
CVE-2022-25366 1 Cryptomator 1 Cryptomator 2024-02-28 4.6 MEDIUM 7.8 HIGH
Cryptomator through 1.6.5 allows DYLIB injection because, although it has the flag 0x1000 for Hardened Runtime, it has the com.apple.security.cs.disable-library-validation and com.apple.security.cs.allow-dyld-environment-variables entitlements. An attacker can exploit this by creating a malicious .dylib file that can be executed via the DYLD_INSERT_LIBRARIES environment variable.