VYPR

ws.stash.app.mac.daemon.helper

by Pentraze.com

CVEs (1)

  • CVE-2024-7457HigJun 11, 2025
    risk 0.51cvss 7.8epss 0.00

    The ws.stash.app.mac.daemon.helper tool contains a vulnerability caused by an incorrect use of macOS’s authorization model. Instead of validating the client's authorization reference, the helper invokes AuthorizationCopyRights() using its own privileged context (root),…