CVE-2025-65843

HIGH EPSS 14.7%

Published Dec 3, 20256mo ago · Modified Jun 17, 20261w ago

7.7 CVSS 3.1

High

Published Dec 3, 2025 6mo ago

Last Modified Jun 17, 2026 1w ago

Description

Aquarius Desktop 3.0.069 for macOS contains an insecure file handling vulnerability in its support data archive generation feature. The application follows symbolic links placed inside the ~/Library/Logs/Aquarius directory and treats them as regular files. When building the support ZIP, Aquarius recursively enumerates logs using a JUCE directory iterator configured to follow symlinks, and later writes file data without validating whether the target is a symbolic link. A local attacker can exploit this behavior by planting symlinks to arbitrary filesystem locations, resulting in unauthorized disclosure or modification of arbitrary files. When chained with the associated HelperTool privilege escalation issue, root-owned files may also be exposed.

CVSS Details

Base Score

7.7

Exploitability

2.5

Impact

5.2

Vector string

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Attack Vector Local

Attack Complexity Low

Privileges Required None

User Interaction None

Scope Unchanged

Confidentiality High

Integrity High

Availability None

Threat Intelligence

EPSS Exploit Probability

14.7% percentile

Exploit & Patch Status

Public Exploit Known

No Patch Available

Weaknesses 1

CWE-59

Affected Products 1

Vendor	Product	Version	Range
acustica-audio	aquarius	3.0.069	any

References 1

almightysec.com https://almightysec.com/insecure-file-handling-via-symlink/

ExploitThird Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.