Haystacksoftware: >> Arq Security Vulnerabilities
The arq_updater binary in Arq 5.10 and earlier for Mac allows local users to write to arbitrary files and consequently gain root privileges via a crafted update URL, as demonstrated by file:///tmp/blah/Arq.zip.
CVSS Score
7.8
EPSS Score
0.005
Published
2018-01-31
The standardrestorer binary in Arq 5.10 and earlier for Mac allows local users to write to arbitrary files and consequently gain root privileges via a crafted restore path.
CVSS Score
7.8
EPSS Score
0.005
Published
2018-01-31