CVE-2024-7915

Name of the Vulnerable Software and Affected Versions Sensei Mac Cleaner (affected versions not specified)

Description The issue allows an attacker to perform multiple operations as the root user, including arbitrary file deletion and writing, loading and unloading daemons, manipulating file permissions, and loading extensions. The vulnerable module org.cindori.SenseiHelper can be contacted via XPC and is susceptible to a PID Reuse Attack, enabling an attacker to impersonate a legitimate client and send crafted XPC messages to invoke arbitrary methods exposed by the HelperProtocol interface.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.