VYPR
Medium severity5.5OSV Advisory· Published Apr 30, 2024· Updated Apr 15, 2026

CVE-2024-22405

CVE-2024-22405

Description

XADMaster is an objective-C library for archive and file unarchiving and extraction. When extracting a specially crafted zip archive XADMaster may not apply quarantine attribute correctly. Such behaviour may circumvent Gatekeeper checks on the system. Only macOS installations are affected. This issue was fixed in XADMaster 1.10.8. It is recommended to upgrade to the latest version. There are no known workarounds for this issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • MacPaw/XadmasterOSV2 versions
    v1.10.4, v1.10.5, v1.10.7+ 1 more
    • (no CPE)range: v1.10.4, v1.10.5, v1.10.7
    • (no CPE)range: <1.10.8

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.