PT-2026-22743 · Iboysoft · Iboysoft Ntfs For Mac
Oscar Uribe
·
Published
2026-03-03
·
Updated
2026-04-27
·
CVE-2026-2637
CVSS v4.0
8.5
High
| Vector | AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
iBoysoft NTFS for Mac version 8.0.0
Description
iBoysoft NTFS for Mac contains a local privilege escalation issue in its privileged helper daemon,
ntfshelperd. The daemon exposes an NSConnection service that operates with root privileges without implementing any authentication or authorization checks. This allows for potential unauthorized access and control over the system.Recommendations
Update iBoysoft NTFS for Mac to a version with the fix. As a temporary workaround, consider disabling the
ntfshelperd daemon until a patch is available.Exploit
Fix
LPE
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Iboysoft Ntfs For Mac