Unrated severityNVD Advisory· Published Jan 29, 2026· Updated Feb 3, 2026

CVE-2025-69604

Description

An issue in Shirt Pocket's SuperDuper! 3.11 and earlier allow a local attacker to modify the default task template to install an arbitrary package that can run shell scripts with root privileges and Full Disk Access, thus bypassing macOS privacy controls.

Affected products

Shirt Pocket/SuperDuper!description
GreatWhiteShark/Superduperllm-fuzzy
Range: <=3.11

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

shirt.commitre
shirt-pocket.com/SuperDuper/SuperDuperDescription.htmlmitre
www.shirtpocket.com/blog/index.php/shadedgrey/comments/superduper_v312_now_availablemitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000