Postbox Dynamic Library Injection Vulnerability Allowing TCC Bypass on macOS

Vulnerability

A vulnerability in Postbox version 7.0.65 for macOS allows for dynamic library injection, bypassing Transparency, Consent, and Control (TCC) mechanisms. This issue arises from the application's entitlements, which permit the use of environment variables to inject code into the application's context. While the injected code can access resources based on previously granted user permissions, accessing additional resources requires user interaction with a system prompt. The original company behind Postbox is no longer operational, and the software will not receive further updates. The acquiring company, eM Client, did not cooperate in the vulnerability disclosure process.

Impact

Exploitation of this vulnerability allows for dynamic library injection, enabling a local attacker to execute arbitrary code within the context of the Postbox application and bypass TCC controls.

Added: Jun 20, 2025, 10:23 AM

Updated: Jun 20, 2025, 10:23 AM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

5.0

exploitability

3.3

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

5.0

exploitability

3.3

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Postbox Dynamic Library Injection Vulnerability Allowing TCC Bypass on macOS

Vulnerability

Impact

Affected Products

Postbox

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating