Unrated severityNVD Advisory· Published Dec 1, 2025· Updated Dec 8, 2025

CVE-2025-61229

Description

An issue in Shirt Pocket's SuperDuper! 3.10 and earlier allow a local attacker to modify the default task template to execute an arbitrary preflight script with root privileges and Full Disk Access, thus bypassing macOS privacy controls.

Affected products

GreatWhiteShark/Superduperinferred
Range: <=3.10
Superduper Io/Superduperllm-fuzzy
Range: <=3.10

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

shirt.commitre
shirt-pocket.com/SuperDuper/SuperDuperDescription.htmlmitre
www.shirtpocket.com/blog/index.php/shadedgrey/comments/superduper_security_update_v311/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000