πŸ” CVE Alert

CVE-2026-24062

HIGH 7.8

Insufficient XPC Client validation leading to local privilege escalation in Arturia Software Center

CVSS Score
7.8
EPSS Score
0.0%
EPSS Percentile
0th

The "Privileged Helper" component of the Arturia Software Center (MacOS) does not perform sufficient client code signature validation when a client connects.Β This leads to an attacker being able to connect to the helper and execute privileged actions leading to local privilege escalation.

CWE CWE-306
Vendor arturia
Product software center
Published Mar 18, 2026
Last Updated Mar 18, 2026
Stay Ahead of the Next One

Get instant alerts for arturia software center

Be the first to know when new high vulnerabilities affecting arturia software center are published β€” delivered to Slack, Telegram or Discord.

Get Free Alerts β†’ Free Β· No credit card Β· 60 sec setup

Affected Versions

Arturia / Software Center
2.12.0.3157

References

NVD β†— CVE.org β†— EPSS Data β†—
r.sec-consult.com: https://r.sec-consult.com/arturia

Credits

Florian Haselsteiner, SEC Consult Vulnerability Lab