2025-12-01 00:00:00
mitre
PUBLISHED
An issue in Shirt Pockets SuperDuper! 3.10 and earlier allow a local attacker to modify the default task template to execute an arbitrary preflight script with root privileges and Full Disk Access, thus bypassing macOS privacy controls.