CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-20172
https://notcve.org/view.php?id=CVE-2021-20172
All known versions of the Netgear Genie Installer for macOS contain a local privilege escalation vulnerability. The installer of the macOS version of Netgear Genie handles certain files in an insecure way. A malicious actor who has local access to the endpoint on which the software is going to be installed may overwrite certain files to obtain privilege escalation to root. Todas las versiones conocidas del instalador de Netgear Genie para macOS contienen una vulnerabilidad de escalada de privilegios local. El instalador de la versión de Netgear Genie para macOS maneja determinados archivos de forma no segura. • https://www.tenable.com/security/research/tra-2021-56 • CWE-732: Incorrect Permission Assignment for Critical Resource •