VYPR
← All advisories
High severity7.8NVD Advisory· Published Apr 6, 2017· Updated May 13, 2026

CVE-2017-2675

CVE-2017-2675

Description

Little Snitch version 3.0 through 3.7.3 suffer from a local privilege escalation vulnerability in the installer part. The vulnerability is related to the installation of the configuration file "at.obdev.littlesnitchd.plist" which gets installed to /Library/LaunchDaemons.

Affected products

29
  • Obdev/Little Snitch21 versions
    cpe:2.3:a:obdev:little_snitch:3.0:*:*:*:*:*:*:*+ 20 more
    • cpe:2.3:a:obdev:little_snitch:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.3.2:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.3.4:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.4:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.5:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.5.3:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.6:*:*:*:*:*:*:*
    • cpe:2.3:a:obdev:little_snitch:3.6.1:*:*:*:*:*:*:*
  • Objective Development/Little Snitch8 versions
    cpe:2.3:a:objective_development:little_snitch:3.6.2:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:objective_development:little_snitch:3.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:objective_development:little_snitch:3.6.3:*:*:*:*:*:*:*
    • cpe:2.3:a:objective_development:little_snitch:3.6.4:*:*:*:*:*:*:*
    • cpe:2.3:a:objective_development:little_snitch:3.7:*:*:*:*:*:*:*
    • cpe:2.3:a:objective_development:little_snitch:3.7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:objective_development:little_snitch:3.7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:objective_development:little_snitch:3.7.3:*:*:*:*:*:*:*
    • (no CPE)range: 3.0 - 3.7.3

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.