Description

The Aquarius HelperTool (1.0.003) privileged XPC service on macOS contains multiple flaws that allow local privilege escalation. The service accepts XPC connections from any local process without validating the client's identity, and its authorization logic incorrectly calls AuthorizationCopyRights with a NULL reference, causing all authorization checks to succeed. The executeCommand:authorization:withReply: method then interpolates attacker-controlled input into NSTask and executes it with root privileges. A local attacker can exploit these weaknesses to run arbitrary commands as root, create persistent backdoors, or obtain a fully interactive root shell.

INFO

Published Date :

2025-12-03T00:00:00.000Z

Last Modified :

2025-12-05T19:07:02.370Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-65842 vulnerability.

Vendors Products
Acustica-audio
  • Aquarius Helpertool
Acusticaudio
  • Aquarius Helpertool
Apple
  • Macos
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-65842.

URL Resource
https://almightysec.com/helpertool-xpc-service-local-privilege-escalation/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact