CVE-2023-40299
Published
CVSS v3
7.8
HIGH
CVSS v2
N/A
Affected
1
PROJECT
Description
Kong Insomnia 2023.4.0 on macOS allows attackers to execute code and access restricted files, or make requests for TCC permissions, by using the DYLD_INSERT_LIBRARIES environment variable.
The open-source, cross-platform API client for GraphQL, REST, WebSockets, SSE and gRPC. With Cloud, Local and Git storage.
GitHub