CVE-2025-25364 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A command injection vulnerability in the me.connectify.SMJobBlessHelper XPC service of Speedify VPN up to v15.0.0 allows attackers to execute arbitrary commands…
High CVSS: 8.4

CVE-2025-25364

A command injection vulnerability in the me.connectify.SMJobBlessHelper XPC service of Speedify VPN up to v15.0.0 allows attackers to execute arbitrary commands with root-level privileges.
Vendor
Connectify
Product
Speedify
CWE
CWE-77
Yayın Tarihi
2025-12-23 19:15:43
Güncelleme
2026-01-06 17:22:29
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-77 Speedify HIGH Connectify 2025

Referanslar

https://connectify.me https://speedify.com/ https://speedify.com/blog/news/speedify-macos-vpn-application-vulnerability/