CVE-2023-42920

EUVD-2023-47341
Claris International has fixed a dylib hijacking vulnerability in the FileMaker Pro.app and Claris Pro.app versions on macOS.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA-ADPADP
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
Affected Products (NVD)
VendorProductVersion
clarisclaris_pro
-
clarisfilemaker_pro
𝑥
< 20.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.claris.com/s/article/FileMaker-Security-Information?language=en_US
https://support.claris.com/s/article/FileMaker-Security-Information?language=en_US