CVE-2025-69604

High CVSS: 7.8

An issue in Shirt Pocket's SuperDuper! 3.11 and earlier allow a local attacker to modify the default task template to install an arbitrary package that can run shell scripts with root privileges and Full Disk Access, thus bypassing macOS privacy controls.

Vendor

Shirt-pocket

Product

Superduper\!

CWE

CWE-276

Yayın Tarihi

2026-01-29 20:16:09

Güncelleme

2026-02-13 20:32:40

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-276 Superduper\! HIGH Shirt-pocket 2026

Referanslar

http://shirt.com https://shirt-pocket.com/SuperDuper/SuperDuperDescription.html https://www.shirtpocket.com/blog/index.php/shadedgrey/comments/superduper_v312_now_available

Benzer Kayıtlar

High

CVE-2025-61228

An issue in Shirt Pocket SuperDuper! V.3.10 and before allows a local attacker to execute arbitrary code via the softwar…

High

CVE-2025-61229

An issue in Shirt Pocket's SuperDuper! 3.10 and earlier allow a local attacker to modify the default task template to ex…

High

CVE-2025-57489

Incorrect access control in the SDAgent component of Shirt Pocket SuperDuper! v3.10 allows attackers to escalate privile…