CVE-2025-61228

HIGH

Shirt Pocket SuperDuper! <3.10 - RCE

Title source: llm

Description

An issue in Shirt Pocket SuperDuper! V.3.10 and before allows a local attacker to execute arbitrary code via the software update mechanism

Exploits (1)

nomisec WORKING POC
by graypixel2121 · poc
https://github.com/graypixel2121/CVE-2025-61228

References (3)

Scores

CVSS v3 7.8
EPSS 0.0001
EPSS Percentile 0.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-494
Status published

Affected Products (1)

shirt-pocket/superduper\! < 3.10

Timeline

Published Dec 01, 2025
Tracked Since Feb 18, 2026