CVE-2022-3421 – Privilege escalation in Google Drive for Desktop on MacOS
https://notcve.org/view.php?id=CVE-2022-3421
An attacker can pre-create the `/Applications/Google\ Drive.app/Contents/MacOS` directory which is expected to be owned by root to be owned by a non-root user. When the Drive for Desktop installer is run for the first time, it will place a binary in that directory with execute permissions and set its setuid bit. Since the attacker owns the directory, the attacker can replace the binary with a symlink, causing the installer to set the setuid bit on the symlink. When the symlink is executed, it will run with root permissions. We recommend upgrading past version 64.0 Un atacante puede pre crear el directorio "/Applications/Google\ Drive.app/Contents/MacOS" que es esperado que sea propiedad de root para que sea propiedad de un usuario no root. • https://support.google.com/a/answer/7577057?hl=en • CWE-264: Permissions, Privileges, and Access Controls CWE-269: Improper Privilege Management •
CVE-2018-13297
https://notcve.org/view.php?id=CVE-2018-13297
Information exposure vulnerability in SYNO.SynologyDrive.Files in Synology Drive before 1.1.2-10562 allows remote attackers to obtain sensitive system information via the dsm_path parameter. Vulnerabilidad de exposición de la información en la función SYNO.SynologyDrive.Files en Synology Drive anterior a la versión 1.1.2-10562 permite a los atacantes remotos obtener información confidencial del sistema por medio del parámetro dsm_path. • https://www.synology.com/security/advisory/Synology_SA_18_50 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2018-8921
https://notcve.org/view.php?id=CVE-2018-8921
Cross-site scripting (XSS) vulnerability in File Sharing Notify Toast in Synology Drive before 1.0.2-10275 allows remote authenticated users to inject arbitrary web script or HTML via the malicious file name. Vulnerabilidad de Cross-Site Scripting (XSS) en File Sharing Notify Toast en Synology Drive en versiones anteriores a la 1.0.2-10275 permite que usuarios remotos autenticados inyecten scripts web o HTML arbitrarios mediante un nombre de archivo malicioso. • https://www.synology.com/en-global/support/security/Synology_SA_18_11 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-8910
https://notcve.org/view.php?id=CVE-2018-8910
Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Drive before 1.0.1-10253 allows remote authenticated users to inject arbitrary web script or HTML via malicious attachments. Vulnerabilidad de Cross-Site Scripting (XSS) en Attachment Preview en Synology Drive en versiones anteriores a la 1.0.1-10253 permite que atacantes remotos autenticados inyecten scripts web o HTML arbitrarios mediante adjuntos maliciosos. • https://www.synology.com/en-global/support/security/Synology_SA_18_05 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •