Exploit for Improper Access Control in Shirt-Pocket Superduper\!_147CD5FB-DA72-56F4-ABA6-13477531C185

8.4 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

CVE-2025-61229 Description From the developer's blog: User-settable Before/After shell scripts run escalated, with SuperDuper's TCC Full Disk Access permissions. Since those shell scripts are referenced by the settings files for the copy or schedule, a...

Visit Original Source

Basic Information

ID 147CD5FB-DA72-56F4-ABA6-13477531C185

Published Dec 10, 2025 at 14:00

Modified Dec 10, 2025 at 14:08

{
    "lastseen": "2025-12-10T14:17:46",
    "description": "CVE-2025-61229 Description From the developer's blog: User-settable Before/After shell scripts run escalated, with SuperDuper's TCC Full Disk Access permissions. Since those shell scripts are referenced by the settings files for the copy or schedule, a...",
    "published": "2025-12-10T14:00:15",
    "modified": "2025-12-10T14:08:59",
    "type": "githubexploit",
    "title": "Exploit for Improper Access Control in Shirt-Pocket Superduper\\!",
    "source": "",
    "references": "",
    "id": "147CD5FB-DA72-56F4-ABA6-13477531C185",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [
        "CVE-2025-57489",
        "CVE-2025-61228",
        "CVE-2025-61229"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 8.4,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://github.com/graypixel2121/CVE-2025-61229",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply