Intego Personal Backup Task File Privilege Escalation

Advisories

Intego Personal Backup Task File Privilege Escalation

severity: high
date: 2/12/2026
Affecting: Personal Backup <= 10.9.x
CVE: CVE-2026-26225
CWE: CWE-59 Improper Link Resolution Before File Access ('Link Following')
CVSS: 8.5
CVSS V4 Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
References: Quarkslab Researcher Blog and PoC
Intego Vendor Homepage
Intego Personal Backup Webpage
Intego Personal Backup X9 Release Notes
Credit: Mathieu Farrell of Quarkslab
Description: Intego Personal Backup, a macOS backup utility that allows users to create scheduled backups and bootable system clones, contains a local privilege escalation vulnerability. Backup task definitions are stored in a location writable by non-privileged users while being processed with elevated privileges. By crafting a malicious serialized task file, a local attacker can trigger arbitrary file writes to sensitive system locations, leading to privilege escalation to root.

Ready to get Started?

Explore VulnCheck, a next-generation Cyber Threat Intelligence platform, which provides exploit and vulnerability intelligence to help you prioritize and remediate vulnerabilities that matter.

Vulnerability Prioritization
Prioritize vulnerabilities that matter based on the threat landscape and defer vulnerabilities that don't.
Early Warning System
Real-time alerting of changes in the vulnerability landscape so that you can take action before the attacks start.

Schedule a Demo