CVEs-PoC/2020/CVE-2020-9986.md

### [CVE-2020-9986](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9986)
![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=unspecified%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20malicious%20application%20may%20be%20able%20to%20read%20sensitive%20location%20information&color=brightgreen)

### Description

A file access issue existed with certain home folder files. This was addressed with improved access restrictions. This issue is fixed in macOS Catalina 10.15.7. A malicious application may be able to read sensitive location information.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Cy-Shadow/Location-Track
- https://github.com/T-jatesada/OpenHayStack
- https://github.com/positive-security/find-you
- https://github.com/seemoo-lab/openhaystack
- https://github.com/tangochuy/openhaystack
- https://github.com/tangochuy/seemoo-lab_openhaystack
- https://github.com/youneselmoukhtari/airtag-zonder-Apple-s-restricties
- https://github.com/youneselmoukhtari/openheystack