Vulnerability Details CVE-2019-5011
An exploitable privilege escalation vulnerability exists in the helper service CleanMyMac X, version 4.20, due to improper updating. The application failed to remove the vulnerable components upon upgrading to the latest version, leaving the user open to attack. A user with local access can use this vulnerability to modify the file system as root. An attacker would need local access to the machine for a successful exploit.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.9%
CVSS Severity
CVSS v3 Score 7.1
CVSS v2 Score 6.6
References
Products affected by CVE-2019-5011
-
cpe:2.3:a:macpaw:cleanmymac_x:4.20