Medium CVSS: 6.9 CVE-2024-11681 A malicious or compromised MacPorts mirror can execute arbitrary commands as root on the machine of a client running port selfupdate against the mirror.