CNNVD-202512-4124 Information

CNNVD ID

CNNVD-202512-4124

Related CVE

CVE-2025-25364

• CNNVD Published: 2025-12-23

Description (Chinese)

Speedify VPN是美国Speedify公司的一个代理软件。 Speedify VPN 15.0.0及之前版本存在安全漏洞，该漏洞源于me.connectify.SMJobBlessHelper XPC服务存在命令注入，可能导致以root权限执行任意命令。

Description (English)

Spedify VPN is an agent software of the United States company Spedify. There is a security loophole in Spedify VPN 15.0.0 and earlier versions, which stems from the existence of orders for the service of me.contractify.SMJobBlessHelper XPC, which may result in arbitrary orders being executed with root powers.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Speedify

Published

2025-12-23

Last Modified

2026-02-24

References

https://connectify.me https://speedify.com/ https://speedify.com/blog/news/speedify-macos-vpn-application-vulnerability/ https://access.redhat.com/security/cve/cve-2025-25364

Patch

https://speedify.com/download/