CVE-2026-24062

Summary

The "Privileged Helper" component of the Arturia Software Center (MacOS) does not perform sufficient client code signature validation when a client connects. This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation.

Affected Software

VendorProductVersion RangeStatus
ArturiaSoftware Center2.12.0.3157affected

Weaknesses

  • CWE-306: CWE-306 Missing authentication for critical function

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: total

References