Apple appears to have silently patched a vulnerability in macOS that would have allowed attackers to bypass the operating system’s built-in file quarantine system and execute malicious JavaScript code. […]

from https://www.bleepingcomputer.com/news/security/apple-quietly-patches-macos-security-bypass-vulnerability/