What is CVE-2026-24063?

CVE-2026-24063 is a high-severity vulnerability in Arturia Software Center, classified under Incorrect Default Permissions. CVSS score: 8.2/10. Published 2026-03-18.

How severe is CVE-2026-24063?

High severity. CVSS v3 base score is 8.2 out of 10.

Vulnerability in Arturia Software Center

CVE-2026-24063

When a plugin is installed using the Arturia Software Center (MacOS), it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, meaning it is writable by any user. When…

EPSS: 0.000 (2.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.2 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H.

Affected products

Arturia Software Center — versions 2.12.0.3157

Weakness classification (CWE)

CWE-276 — Incorrect Default Permissions

References

551230f0-3615-47bd-b7cc-93e92e730bbf (third-party-advisory)

Frequently asked questions

What is CVE-2026-24063?: CVE-2026-24063 is a high-severity vulnerability in Arturia Software Center, classified under Incorrect Default Permissions. CVSS score: 8.2/10. Published 2026-03-18.
How severe is CVE-2026-24063?: High severity. CVSS v3 base score is 8.2 out of 10.