Discussion

macOS Recovery Mode Safari allowed unrestricted writes to system partitions (and root persistence)

AshamedCaptain: The self-assigned CVSS scores are bogus and as it is right now I would not be surprised if Apple just ignored this report.I mean:> No user interaction from the legitimate owner is required.What? You literally have to convince the user to configure Safari to change the download folder, then convince the user to set it to one of the System folders, then convince the user to download . I'd hardly say this is a "8.5" CVSS; I'd even have my doubts whether to call it a vulnerability at all. Next thing, you convince the user to write terminal commands in recovery mode, such as "mkfs".And the second one is non-sense, since you are just using Safari to view a file.

jeroenhd: Apple tries to lock down access at the very least. They also patched the vulnerability twice (they restricted Safari for some reason and they also disabled the settings in the new version of Safari). It seems like Apple cares at the very least. Which is weird, because they also give you a terminal?Lots of people I've met were surprised that I was able to get their photos from their windows laptops without ever needing their password. Especially these days in the age where even phones and Windows 11 will enable encryption by default, it's a tad weird that disk encryption isn't on by default on macOS. I, at the very least, was surprised that disk encryption isn't mandatory and always on on macOS, seeing the way Apple controls both the OS and the TPM firmware so that they're pretty much immune to the dreaded "BIOS update made my laptop ask for bitlocker" problem you get on Windows.I don't really get why this would be AI generated, what makes you think that?