Security Advisory

CVE-2026-0924

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-02 20:18:21
Last updated 2026-04-21 02:40:06
Assigner Fluid Attacks
State PUBLISHED

Description

BuhoCleaner contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root via insecure functions.This issue affects BuhoCleaner: 1.15.2.