High severity7.4NVD Advisory· Published Dec 1, 2017· Updated Jun 17, 2026
CVE-2017-15357
CVE-2017-15357
Description
The setpermissions function in the auto-updater in Arq before 5.9.7 for Mac allows local users to gain root privileges via a symlink attack on the updater binary itself.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
3- m4.rkw.io/blog/cve201715357-local-root-privesc-in-arq-backup--596.htmlnvdExploitThird Party Advisory
- www.exploit-db.com/exploits/43218/nvdExploitThird Party AdvisoryVDB Entry
- www.arqbackup.com/download/arq5_release_notes.htmlnvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.