Blackmagic Design DaVinci Resolve TCC Bypass Vulnerability

A vulnerability in DaVinci Resolve for macOS allows local attackers with unprivileged access to bypass Transparency, Consent, and Control (TCC) by substituting a legitimate dynamic library with a malicious one. This exploitation takes advantage of the entitlement 'com.apple.security.cs.disable-library-validation' and the absence of launch and library load constraints. The vulnerability is present in all versions of DaVinci Resolve, with the last tested version being 19.1.3.

Impact

Exploitation of this vulnerability allows for a TCC bypass, enabling access to user files in privacy-protected folders without triggering user prompts. While the accessed resources are limited to permissions previously granted by the user, the bypass could be used to manipulate or access sensitive data. Additionally, accessing other resources beyond the granted permissions requires user interaction with a system prompt.

Remediation

Users can update to the latest version of DaVinci Resolve to address this vulnerability.