CCE-50331-8Platform: cpe:/o:apple:mac_os_14 | Date: (C)2024-01-24 (M)2024-01-24 |
Secure Keyboard Entry prevents other applications on the system and/or network from detecting and recording what is typed into Terminal. Unauthorized applications and malicious code could intercept keystrokes entered in the Terminal.
Rationale: Enabling Secure Keyboard Entry minimizes the risk of a key logger detecting what is entered in Terminal.
Impact: Enabling this in Terminal would prevent an application that is otherwise validly intercepting keyboard input from intercepting that input in Terminal.app. This could impact productivity tools.
Remediation:
Profile Method: Create or edit a configuration profile with the following information: 1. The PayloadType string is com.apple.Terminal 2. The key to include is SecureKeyboardEntry 3. The key must be set to <true/>
Note: Since the profile method sets a system-wide setting and not a user-level one, the profile method is the preferred method. It is always better to set system-wide than per user.
Parameter:
[Yes/No]
Technical Mechanism:
Profile Method: Create or edit a configuration profile with the following information: 1. The PayloadType string is com.apple.Terminal 2. The key to include is SecureKeyboardEntry 3. The key must be set to true/
Note: Since the profile method sets a system-wide setting and not a user-level one, the profile method is the preferred method. It is always better to set system-wide than per user.
CCSS Severity: | CCSS Metrics: |
CCSS Score : 7.5 | Attack Vector: NETWORK |
Exploit Score: 1.6 | Attack Complexity: HIGH |
Impact Score: 5.9 | Privileges Required: LOW |
Severity: HIGH | User Interaction: NONE |
Vector: AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H | Scope: UNCHANGED |
| Confidentiality: HIGH |
| Integrity: HIGH |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:97020 |