CVE-2024-23741

Summary

CVE-2024-23741 is a newly disclosed vulnerability affecting Hyper, a popular terminal emulator for macOS. This issue, present in versions 3.4.1 and earlier, enables remote attackers to execute arbitrary code. The exploitation occurs through the misuse of the "RunAsNode" and "enableNodeClilnspectArguments" settings, providing attackers with an effective way to bypass security restrictions and gain unauthorized access to a system. This vulnerability poses a significant risk to users and requires immediate attention in the form of updates or mitigations to protect against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.