An issue in Shirt Pocket's SuperDuper! 3.10 and earlier allow a local attacker to modify the default task template to execute an arbitrary preflight script with root privileges and Full Disk Access, thus bypassing macOS privacy controls.Referenceshttp://shirt.comhttps://shirt-pocket.com/SuperDuper/SuperDuperDescription.htmlhttps://www.shirtpocket.com/blog/index.php/shadedgrey/comments/superduper_security_update_v311/
