379 matches found
EUVD-2025-2570
Malicious code in bioql PyPI...
EUVD-2021-28416
Malicious code in bioql PyPI...
CVE-2025-7779
Local privilege escalation due to insecure XPC service configuration. The following products are affected: Acronis True Image macOS before build 42389, Acronis True Image for SanDisk macOS before build 42198, Acronis True Image for Western Digital macOS before build 42197, Acronis True Image OEM...
CVE-2025-7779
Local privilege escalation due to insecure XPC service configuration. The following products are affected: Acronis True Image macOS before build 42389, Acronis True Image for SanDisk macOS before build 42198, Acronis True Image for Western Digital macOS before build 42197, Acronis True Image OEM...
CVE-2025-7779
Local privilege escalation due to insecure XPC service configuration. The following products are affected: Acronis True Image macOS before build 42389, Acronis True Image for SanDisk macOS before build 42198, Acronis True Image for Western Digital macOS before build 42197, Acronis True Image OEM...
CVE-2025-7779
Local privilege escalation due to insecure XPC service configuration. The following products are affected: Acronis True Image macOS before build 42389, Acronis True Image for SanDisk macOS before build 42198, Acronis True Image for Western Digital macOS before build 42197, Acronis True Image OEM...
CVE-2025-7779
CVE-2025-7779: Local privilege escalation due to insecure XPC service configuration. Affects Acronis True Image (macOS) before build 42389, Acronis True Image for SanDisk (macOS) before build 42198, and Acronis True Image for Western Digital (macOS) before build 42197. Remediation: upgrade to bui...
CVE-2025-11130
A weakness has been identified in iHongRen pptp-vpn 1.0/1.0.1 on macOS. This issue affects the function shouldAcceptNewConnection of the file HelpTool/HelperTool.m of the component XPC Service. This manipulation causes missing authentication. The attack can only be executed locally. The exploit h...
Acronis True Image 安全漏洞
Acronis True Image is a well-known data backup and restore software from the Swiss company Acronis. The software can be used to create drive and disk images and can restore the image when a clean system is needed. A security vulnerability exists in Acronis True Image, which stems from an insecure...
PT-2025-39998
Name of the Vulnerable Software and Affected Versions Acronis True Image macOS versions prior to build 42389 Acronis True Image for SanDisk macOS versions prior to build 42198 Acronis True Image for Western Digital macOS versions prior to build 42197 Description An insecure XPC service...
Incorrect Authorization
Overview Affected versions of this package are vulnerable to Incorrect Authorization via the Downloader.xpc service. A local unprivileged attacker can access and copy files protected by TCC permissions by registering the service globally and exploiting the lack of client validation. Workaround Th...
Race Condition within a Thread
Overview Affected versions of this package are vulnerable to Race Condition within a Thread via the Autoupdate helper tool. A local unprivileged attacker can gain elevated privileges by sending a very well-timed XPC message and connect to the daemon when it is spawned as root and requesting...
CVE-2025-10016
The CVE-2025-10016 issue affects the Sparkle framework’s Autoupdate/Downloader.xpc mechanism. Reports in connected sources describe a local, unprivileged attacker who can exploit a race condition by connecting to the daemon as root to request installation of a crafted PKG, leading to local privil...
CVE-2025-10016 Local Privilege Escalation in Sparkle Autoupdate Daemon
The Sparkle framework includes a helper tool Autoupdate. Due to lack of authentication of connecting clients a local unprivileged attacker can request installation of crafted malicious PKG file by racing to connect to the daemon when other app spawns it as root. This results in local privilege...
CVE-2025-10015
The Sparkle framework’s Downloader.xpc XPC service can be registered globally by a local, unprivileged attacker, causing the service to inherit the app’s TCC permissions. The root cause is lack of validation of the connecting client, allowing copying of TCC-protected files to arbitrary locations;...
CVE-2025-10015 TCC Bypass via Downloader XPC Service in Sparkle
The Sparkle framework includes an XPC service Downloader.xpc, by default this service is private to the application its bundled with. A local unprivileged attacker can register this XPC service globally which will inherit TCC permissions of the application. Lack of validation of connecting client...
PT-2025-37917
Name of the Vulnerable Software and Affected Versions: Sparkle framework versions prior to 2.7.2 Description: The Sparkle framework includes an XPC service, Downloader.xpc, which is, by default, private to the application it is bundled with. A local, unprivileged attacker can register this XPC...
CVE-2025-9815 alaneuler batteryKid NSXPCListener PrivilegeHelper.swift missing authentication
A weakness has been identified in alaneuler batteryKid up to 2.1 on macOS. The affected element is an unknown function of the file PrivilegeHelper/PrivilegeHelper.swift of the component NSXPCListener. This manipulation causes missing authentication. It is possible to launch the attack on the loca...
PT-2025-35539
Name of the Vulnerable Software and Affected Versions: alaneuler batteryKid versions 2.0 through 2.1 Description: A weakness has been identified in alaneuler batteryKid on macOS. The affected element is an unknown function within the file PrivilegeHelper/PrivilegeHelper.swift of the NSXPCListener...
CVE-2025-8533
A vulnerability was identified in the XPC services of Fantastical. The services failed to implement proper client authorization checks in its listener:shouldAcceptNewConnection method, unconditionally accepting requests from any local process. As a result, any local, unprivileged process could...