CVE-2025-61229

High CVSS: 7.8

An issue in Shirt Pocket's SuperDuper! 3.10 and earlier allow a local attacker to modify the default task template to execute an arbitrary preflight script with root privileges and Full Disk Access, thus bypassing macOS privacy controls.

Vendor

Shirt-pocket

Product

Superduper\!

CWE

CWE-276

Yayın Tarihi

2025-12-01 16:15:55

Güncelleme

2025-12-08 16:15:52

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-276 Superduper\! HIGH Shirt-pocket 2025

Referanslar

http://shirt.com https://shirt-pocket.com/SuperDuper/SuperDuperDescription.html https://www.shirtpocket.com/blog/index.php/shadedgrey/comments/superduper_security_update_v311/

Benzer Kayıtlar

High

CVE-2025-69604

An issue in Shirt Pocket's SuperDuper! 3.11 and earlier allow a local attacker to modify the default task template to in…

High

CVE-2025-61228

An issue in Shirt Pocket SuperDuper! V.3.10 and before allows a local attacker to execute arbitrary code via the softwar…

High

CVE-2025-57489

Incorrect access control in the SDAgent component of Shirt Pocket SuperDuper! v3.10 allows attackers to escalate privile…