CVE-2026-24071

Exploit

EPSS 0.15%
Veröffentlicht 02.02.2026 13:23:51
Zuletzt bearbeitet 11.02.2026 20:39:27
Quelle 551230f0-3615-47bd-b7cc-93e92e
CVE-Watchlists
Login
Unerledigt
Login

XPC Client Validation via PID leading to Local Privilege Escalation in Native Instruments Native Access

It was found that the XPC service offered by the privileged helper of Native Access  uses the PID of the connecting client to verify its code signature. This is considered insecure and can be exploited by PID reuse attacks. The connection handler function uses _xpc_connection_get_pid(arg2) as argument for the hasValidSignature function. This value can not be trusted since it is vulnerable to PID reuse attacks.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Native-instruments ≫ Native Access Version <= 3.22.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.15%	0.042

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.8	1.1	6	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the product to perform invalid actions when the resource is in an unexpected state.

https://sec-consult.com/vulnerability-lab/advisory/multiple-vulnerabilities-in-native-instruments-native-access-macos/

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2026-24071

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-24071

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-24071

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-24071