Отправить #641358: alaneuler batteryKid v2.1 Missing Authentication for Critical FunctionИнформация

Названиеalaneuler batteryKid v2.1 Missing Authentication for Critical Function
ОписаниеbatteryKid for macOS up to 2,1 registers a root-privileged XPC helper (me.alaneuler.batteryKid.PrivilegeHelper) that unconditionally accepts incoming connections without client validation. The helper exposes methods to read and write System Management Controller (SMC) keys, allowing any local process to invoke privileged hardware operations.
Источник⚠️ https://github.com/SwayZGl1tZyyy/n-days/blob/main/batteryKid/README.md
Пользователь
 SwayZGl1tZyyy (UID 88771)
Представление25.08.2025 20:03 (8 месяцы назад)
Модерация01.09.2025 23:06 (7 days later)
Статуспринято
Запись VulDB322142 [alaneuler batteryKid до 2.1 на macOS NSXPCListener PrivilegeHelper.swift слабая аутентификация]
Баллы18

ПредыдущийОбзорДалее

Want to know what is going to be exploited?

We predict KEV entries!