Home
Description
An issue in Shirt Pocket's SuperDuper! 3.10 and earlier allow a local attacker to modify the default task template to execute an arbitrary preflight script with root privileges and Full Disk Access, thus bypassing macOS privacy controls.
References
shirt-pocket.com/SuperDuper/SuperDuperDescription.html
www.shirtpocket.com/...ents/superduper_security_update_v311/
