CVE-2024-3995 - Dylib Injection in HelixALM - 2023.4.0 Build 9

Description

Proof of concept for CVE-2024-3995 - Dylib Injection in HelixALM - 2023.4.0 Build 9 (Mac OS X/Intel 64). A set of entitlements were included in the version that allowed for dylibs to be injected into the context of the application.

Proof of Concept

https://github.com/n0psn0ps/Helix-CVE/