CVE-2026-34218 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies. Prior to version 4.2.14, two related startup defects create…
Medium CVSS: 6.3

CVE-2026-34218

ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies. Prior to version 4.2.14, two related startup defects created a window during which only the single compile-time baseline rule was enforced by opfilter. All managed (MDM-delivered) and user-defined file-access rules were not applied until the user interacted with policies through the GUI, triggering a policy mutation over XPC. This issue has been patched in version 4.2.14.
Vendor
Craigjbass
Product
Clearancekit
CWE
CWE-269
Yayın Tarihi
2026-03-31 16:16:31
Güncelleme
2026-04-06 15:04:33
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-269 Clearancekit MEDIUM Craigjbass 2026

Referanslar

https://github.com/craigjbass/clearancekit/commit/56d617b778c571e3c29b803636d9807940992daa https://github.com/craigjbass/clearancekit/commit/ddfdacb2633681bbd9c2f41dbd536ea039386628 https://github.com/craigjbass/clearancekit/security/advisories/GHSA-fpmv-5wgw-qhhr