CVE-2024-7915

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 25, 2024
CWE ID 863

Summary

CVE-2024-7915 is a local privilege escalation vulnerability affecting the application Sensei Mac Cleaner. An attacker can exploit this flaw to execute multiple privileged tasks, such as arbitrary file deletion and writing, manipulating file permissions, and loading extensions. The issue lies in the module org.cindori.SenseiHelper, which can be contacted via XPC. The module validates clients based on their process identifier (PID), obtained through the public processIdentifier property of the NSXPCConnection class. However, this approach makes the module vulnerable to PID reuse attacks, allowing an attacker to impersonate a legitimate client and send malicious XPC messages to invoke arbitrary methods exposed by the HelperProtocol interface.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share