{"vulnerability": "CVE-2020-0984", "sightings": [{"uuid": "803a5ea3-e6df-4e2a-b6b6-0089df7217b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-0984", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/1258", "content": "#Threat_Research \nSecure coding XPC Services\nPart 1 - Why EvenBetterAuthorization is not enough? (PoC for CVE-2019-20057)\nhttps://theevilbit.github.io/posts/secure_coding_xpc_part1\nPart 2 - Checking CS (CodeSigning) flags of the client\nhttps://theevilbit.github.io/posts/secure_coding_xpc_part2\nPart 3 - Incorrect client verification (PoC for CVE-2020-0984)\nhttps://theevilbit.github.io/posts/secure_coding_xpc_part3\nPart 4 - Improved client authorization (PoC for CVE-2020-14978)\nhttps://theevilbit.github.io/posts/secure_coding_xpc_part4\nPart 5 - PID reuse attacks (PoC for CVE-2020-14977)\nhttps://theevilbit.github.io/posts/secure_coding_xpc_part5", "creation_timestamp": "2021-01-28T15:59:56.000000Z"}, {"uuid": "6ce3df43-15d1-4f9c-8a54-7aceab838bad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-0984", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/2122", "content": "#Offensive_security\nMicrosoft Teams for MacOS LPE (PoC for CVE-2020-0984)\nhttps://www.offensive-security.com/offsec/microsoft-teams-macos-local-privesc\n]-> PoC:\nhttps://theevilbit.github.io/posts/secure_coding_xpc_part3", "creation_timestamp": "2022-06-08T21:19:57.000000Z"}]}