Unrated severityNVD Advisory· Published Dec 3, 2025· Updated Dec 3, 2025
CVE-2025-55076
CVE-2025-55076
Description
A local privilege escalation vulnerability exists in the InstallationHelper service included with Plugin Alliance Installation Manager v1.4.0 for macOS. The service accepts unauthenticated XPC connections and executes input via system(), which may allow a local user to execute arbitrary commands with root privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.4.0+ 1 more
- (no CPE)range: <=1.4.0
- (no CPE)range: = v1.4.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.