Auth bypass in Craigjbass Clearancekit

CVE-2026-33632

ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies. Prior to version 4.2.4, two file operation event types — ES_EVENT_TYPE_AUTH_EXCHANGEDATA and ES_EVENT_TYPE_AUTH_CLONE — were not intercept…

Vulnerability class: Broken Access Control

EPSS: 0.000 (4.8th percentile) — read the EPSS interpretation.

Affected products

Craigjbass Clearancekit — versions < 4.2.4

Weakness classification (CWE)

CWE-862 — Missing Authorization

References

https://github.com/craigjbass/clearancekit/security/advisories/GHSA-wpxj-vhfp-hhvm (x_refsource_CONFIRM)
https://github.com/craigjbass/clearancekit/commit/6181c4a22eccbeca973c77f4bd023eb795c13786 (x_refsource_MISC)