CVE-2020-9971 Abusing XPC Service mechanism to elevate privilege in macOS/iOS
Tags
attack-pattern: Launchctl - T1569.001 Launchd - T1053.004 Xpc Services - T1559.003 Launchctl - T1152 Sudo - T1169
Show in Graph
Common Information
Type Value
UUID e980df80-2a8c-4375-aab8-fbfb8308c882
Fingerprint c738cd516dc06525
Analysis status DONE
Considered CTI value 0
Text language
Published Jan. 11, 2021, 10:26 a.m.
Added to db Jan. 19, 2023, 12:04 a.m.
Last updated Oct. 1, 2024, 2:43 p.m.
Headline CVE-2020-9971 Abusing XPC Service mechanism to elevate privilege in macOS/iOS
Title CVE-2020-9971 Abusing XPC Service mechanism to elevate privilege in macOS/iOS
Detected Hints/Tags/Attributes 30/1/5
Source URLs
Redirection Url
Details Source https://xlab.tencent.com/en/2021/01/11/cve-2020-9971-abusing-xpc-service-to-elevate-privilege/
URL Provider
Details Provider Source level domain
Details tencent.com xlab.tencent.com
Attributes
Details Type #Events CTI Value
Details CVE 2 
cve-2020-9971
Details Domain 1 
com.apple.xpc.launchd.domain.pid
Details File 1 
pid.sys
Details File 1 
com.r3d
Details File 7 
launchd.pl