Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:16 p.m.5 views

CVE-2026-24063

When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...

8.2CVSS5.9AI score0.00127EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:16 p.m.7 views

CVE-2026-24062

The "Privileged Helper" component of the Arturia Software Center MacOS does not perform sufficient client code signature validation when a client connects. This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation...

7.8CVSS5.9AI score0.00122EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2026/03/19 12:0 a.m.104 views

📄 Arturia Software Center MacOS 2.12.0.3157 Privilege Escalation

Arturia Software Center MacOS version 2.12.0.3157 suffers from privilege escalation vulnerabilities. SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Privilege Escalation Vulnerabilities product: Arturia Softwa...

8.2CVSS5.8AI score0.00127EPSS
Exploits1
EUVD
EUVD
added 2026/03/18 6:31 p.m.9 views

EUVD-2026-12829

The "Privileged Helper" component of the Arturia Software Center MacOS does not perform sufficient client code signature validation when a client connects. This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation...

7.8CVSS5.8AI score0.00122EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/18 6:31 p.m.9 views

EUVD-2026-12831

When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...

8.2CVSS5.9AI score0.00127EPSS
Exploits1References2
NVD
NVD
added 2026/03/18 4:16 p.m.7 views

CVE-2026-24062

The "Privileged Helper" component of the Arturia Software Center MacOS does not perform sufficient client code signature validation when a client connects. This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation...

7.8CVSS0.00122EPSS
Exploits1References1
NVD
NVD
added 2026/03/18 4:16 p.m.7 views

CVE-2026-24063

When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...

8.2CVSS0.00127EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/18 3:33 p.m.4 views

CVE-2026-24063 World-writable uninstall script executed as root in Arturia Software Center

When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...

5.9AI score0.00127EPSS
Exploits1References1
CVE
CVE
added 2026/03/18 3:33 p.m.9 views

CVE-2026-24063

The CVE concerns Arturia Software Center on macOS. A plugin install creates an uninstall.sh script in a root-owned path with 777 permissions, writable by any user. During plugin uninstall, the Privileged Helper is instructed to execute this script. If an attacker manipulates the script, this can ...

8.2CVSS5.9AI score0.00127EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/18 3:33 p.m.5 views

CVE-2026-24063

When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...

8.2CVSS5.9AI score0.00127EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/03/18 3:33 p.m.18 views

CVE-2026-24063 World-writable uninstall script executed as root in Arturia Software Center

When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...

0.00127EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/18 3:24 p.m.4 views

CVE-2026-24062 Insufficient XPC Client validation leading to local privilege escalation in Arturia Software Center

The "Privileged Helper" component of the Arturia Software Center MacOS does not perform sufficient client code signature validation when a client connects. This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation...

5.8AI score0.00122EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/18 3:24 p.m.5 views

CVE-2026-24062

The "Privileged Helper" component of the Arturia Software Center MacOS does not perform sufficient client code signature validation when a client connects. This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation...

7.8CVSS5.8AI score0.00122EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/03/18 3:24 p.m.22 views

CVE-2026-24062 Insufficient XPC Client validation leading to local privilege escalation in Arturia Software Center

The "Privileged Helper" component of the Arturia Software Center MacOS does not perform sufficient client code signature validation when a client connects. This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation...

0.00122EPSS
Exploits1References1
CVE
CVE
added 2026/03/18 3:24 p.m.15 views

CVE-2026-24062

The CVE-2026-24062 entry describes an issue in the MacOS Privileged Helper of Arturia Software Center where the Privileged Helper does not perform sufficient client code signature validation during XPC connections. This allows an attacker to connect to the helper and execute privileged actions, r...

7.8CVSS5.8AI score0.00122EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/18 12:0 a.m.10 views

Arturia Software Center 安全漏洞

The Arturia Software Center is an application developed by the French company Arturia, used for managing, installing, and updating music production software and plugins. The Arturia Software Center has a security vulnerability, which stems from insufficient client-side code signature verification...

7.8CVSS5.9AI score0.00122EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/18 12:0 a.m.14 views

PT-2026-26067

When a plugin is installed using the Arturia Software Center MacOS, it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When uninstalling a plugin via the Arturia Software Center the...

8.2CVSS5.9AI score0.00127EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/18 12:0 a.m.7 views

Arturia Software Center 安全漏洞

Arturia Software Center is an application developed by the French company Arturia, used for managing, installing, and updating music production software and plugins. There is a security vulnerability in Arturia Software Center, which stems from improper permission settings in the uninstall.sh...

8.2CVSS5.8AI score0.00127EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/18 12:0 a.m.9 views

PT-2026-26066

The "Privileged Helper" component of the Arturia Software Center MacOS does not perform sufficient client code signature validation when a client connects. This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation...

7.8CVSS5.9AI score0.00122EPSS
Exploits1References3
Rows per page
Query Builder