🔐 CVE Alert

CVE-2026-0924

UNKNOWN 0.0

BuhoCleaner 1.15.2 - Local Privilege Escalation via PID reuse attack

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

BuhoCleaner contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root via insecure functions.This issue affects BuhoCleaner: 1.15.2.

CWE CWE-367
Vendor dr.buho
Product buhocleaner
Published Feb 2, 2026
Last Updated Apr 20, 2026
Stay Ahead of the Next One

Get instant alerts for dr.buho buhocleaner

Be the first to know when new unknown vulnerabilities affecting dr.buho buhocleaner are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Dr.Buho / BuhoCleaner
1.15.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗
fluidattacks.com: https://fluidattacks.com/advisories/solstafir drbuho.com: https://www.drbuho.com/buhocleaner drbuho.com: https://www.drbuho.com/buhocleaner/download

Credits

Oscar Uribe