Privilege Escalation Vulnerability in HYPR Workforce Access on MacOS
CVE-2023-0834

7HIGH

Key Information:

Vendor: Hypr
Status: Workforce Access
Vendor: CVE Published:; 28 April 2023

What is CVE-2023-0834?

A vulnerability in HYPR's Workforce Access for MacOS allows attackers to escalate privileges due to improper permission assignments. This impacts versions from 6.12 up to but not including 8.1, potentially enabling unauthorized users to gain elevated access rights and control over system resources. This issue necessitates immediate attention to secure affected systems.

Affected Version(s)

Workforce Access MacOS 6.12 < 8.1

References

https://www.hypr.com/security-advisories

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 28, 2023
Vulnerability Reserved
Feb 14, 2023

Hypr

What is CVE-2023-0834?

Affected Version(s)

References

CVSS V3.1

Timeline