Trilium Notes TCC Bypass Vulnerability via Prompt Spoofing

A TCC bypass vulnerability has been identified in Trilium Notes versions prior to 0.102.2. This issue arises from the Electron application's configuration, which allows local attackers to manipulate macOS permission prompts. By executing malicious code under the guise of a trusted application, attackers can request sensitive permissions, such as access to hardware like the camera and microphone, as well as TCC-protected files. The vulnerability exploits the 'RunAsNode' fuse, enabling the execution of arbitrary system commands with the application's permissions, thereby misleading users into granting access based on false representations.

Impact

Exploitation of this vulnerability allows for TCC prompt spoofing, where requests for sensitive access are misrepresented as coming from a trusted application. This deception undermines the user's ability to make informed decisions, increasing the likelihood of consent. The vulnerability also provides access to TCC-protected resources, including sensitive hardware like the camera and microphone, as well as protected folders such as Documents and Downloads.

Reproduction

The vulnerability can be reproduced by injecting a predefined script into the Trilium Notes application using the electroniz3r tool. This script can automate the process of requesting TCC-protected resources, such as camera access, while spoofing the prompt to appear as if it originated from Trilium Notes.

Remediation

Users are advised to update Trilium Notes to version 0.102.2 or later, where this vulnerability has been fixed.