← back
CVE-2025-61229

CVE-2025-61229

CVSS 8.4 HIGHEPSS 0.1%CWE-284
An issue in Shirt Pocket's SuperDuper! 3.10 and earlier allow a local attacker to modify the default task template to execute an arbitrary preflight script with root privileges and Full Disk Access, thus bypassing macOS privacy controls.
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://shirt.comhttps://shirt-pocket.com/SuperDuper/SuperDuperDescription.htmlhttps://www.shirtpocket.com/blog/index.php/shadedgrey/comments/superduper_security_update_v311/