CVE-2018-4044

MEDIUM

CleanMyMac X 4.04 - Privilege Escalation via Helper Service Input Validation

Title source: llm
STIX 2.1

Description

An exploitable privilege escalation vulnerability exists in the helper service of Clean My Mac X, version 4.04, due to improper input validation. An attacker with local access could exploit this vulnerability to modify the file system as root.

References (1)

Core 1
Core References

Scores

CVSS v3 5.5
EPSS 0.0031
EPSS Percentile 22.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-20
Status published
Products (1)
macpaw/cleanmymac_x 4.04
Published Jan 10, 2019
Tracked Since Feb 18, 2026