CVE-2026-0924

Publication date

2026-02-02 20:18:21

Family

Fluid Attacks

State

PUBLISHED

Description

BuhoCleaner contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root via insecure functions.This issue affects BuhoCleaner: 1.15.2.