CVE-2025-54595
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-08-01

Last updated on: 2025-08-04

Assigner: GitHub, Inc.

Description
Pearcleaner is a free, source-available and fair-code licensed mac app cleaner. The PearcleanerHelper is a privileged helper tool bundled with the Pearcleaner application. It is registered and activated only after the user approves a system prompt to allow privileged operations. Upon approval, the helper is configured as a LaunchDaemon and runs with root privileges. In versions 4.4.0 through 4.5.1, the helper registers an XPC service (com.alienator88.Pearcleaner.PearcleanerHelper) and accepts unauthenticated connections from any local process. It exposes a method that executes arbitrary shell commands. This allows any local unprivileged user to escalate privileges to root once the helper is approved and active. This issue is fixed in version 4.5.2.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-08-01
Last Modified
2025-08-04
Generated
2026-05-06
AI Q&A
2025-08-01
EPSS Evaluated
2026-05-05
NVD
CVE-2025-54595
EUVD
EUVD-2025-23383
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
alienator88 pearcleaner 4.5.2
alienator88 pearcleaner 4.4.0
alienator88 pearcleaner 4.5.1
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-269 The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
CWE-78 The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability exists in the PearcleanerHelper tool of the Pearcleaner mac app cleaner versions 4.4.0 through 4.5.1. After a user approves a system prompt to allow privileged operations, the helper runs with root privileges and registers an XPC service that accepts unauthenticated connections from any local process. It exposes a method that allows execution of arbitrary shell commands, enabling any local unprivileged user to escalate their privileges to root once the helper is active.


How can this vulnerability impact me? :

This vulnerability can allow a local unprivileged user to gain root-level access on the affected system. This means an attacker with local access could execute arbitrary commands with the highest privileges, potentially compromising the entire system, accessing sensitive data, installing malware, or disrupting system operations.


What immediate steps should I take to mitigate this vulnerability?

To mitigate this vulnerability, immediately update Pearcleaner to version 4.5.2 or later, where the issue is fixed. Additionally, avoid approving the PearcleanerHelper privileged helper tool prompt until the update is applied, as approval activates the vulnerable helper running with root privileges.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart