High severity7.8NVD Advisory· Published Jan 31, 2018· Updated Jun 17, 2026

CVE-2017-16928

Description

The arq_updater binary in Arq 5.10 and earlier for Mac allows local users to write to arbitrary files and consequently gain root privileges via a crafted update URL, as demonstrated by file:///tmp/blah/Arq.zip.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Arq/Arqllm-fuzzy
Range: <=5.10

Patches

Vulnerability mechanics

References

packetstormsecurity.com/files/146158/Arq-5.10-Local-Privilege-Escalation.htmlnvdExploitThird Party AdvisoryVDB Entry
www.exploit-db.com/exploits/43925/nvdExploitThird Party AdvisoryVDB Entry
m4.rkw.io/blog/two-local-root-privesc-bugs-in-arq-backup--510.htmlnvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000