Enviar #653159: whuan132 AIBattery v1.0.9 Unauthenticated XPC to root helper exposes SMC power controlsinformación

Títulowhuan132 AIBattery v1.0.9 Unauthenticated XPC to root helper exposes SMC power controls
DescripciónA root privileged XPC helper registers a public Mach service (com.collweb.AIBatteryHelper) and accepts any incoming connection without authenticating the caller (no audit token, code-signing TeamID or entitlement checks). As a result, any local, unprivileged process can invoke methods exposed via BatteryXPCProtocol (e.g., forceBatteryMode, enableAdapter, enableCharging) and perform privileged power/SMC operations.
Fuente⚠️ https://github.com/SwayZGl1tZyyy/n-days/blob/main/AIBattery-Charge-Limiter/README.md
Usuario
 SwayZGl1tZyyy (UID 88771)
Sumisión2025-09-12 05:21 (hace 8 meses)
Moderación2025-09-18 07:46 (6 days later)
EstadoAceptado
Entrada de VulDB324793 [whuan132 AIBattery hasta 1.0.9 com.collweb.AIBatteryHelper BatteryXPCService.swift autenticación débil]
Puntos19

AnteriorVisión De ConjuntoPróximo

Interested in the pricing of exploits?

See the underground prices here!