An exploitable privilege escalation vulnerability exists in the helper service CleanMyMac X, version 4.20, due to improper updating. The application failed to remove the vulnerable components upon upgrading to the latest version, leaving the user open to attack. A user with local access can use this vulnerability to modify the file system as root. An attacker would need local access to the machine for a successful exploit.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: talos
Published: 2019-03-21T14:50:38
Updated: 2024-08-04T19:40:49.194Z
Reserved: 2019-01-04T00:00:00
Link: CVE-2019-5011
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-03-21T16:01:05.280
Modified: 2024-11-21T04:44:10.990
Link: CVE-2019-5011
Redhat
No data.