Poppy: XPC Observability & Fault Injection

56% confidence

Description

oss-sec mailing list archives By Date By Thread From : Stuart Thomas <stuartpaulthomas () gmail com> Date : Fri, 15 May 2026 21:21:47 +0100 Poppy: XPC Observability & Fault Injection Dynamic analysis toolkit for macOS daemons. Trace XPC messages, map entitlement checks in real-time, and perform targeted fault injection via Frida and DTrace. https://github.com/jetnoir/poppy By Date By Thread Current thread: Poppy: XPC Observability & Fault Injection Stuart Thomas (May 15)

Affected Products

Vendor	Product	Versions
Openwall	Poppy	—

Related News (2 articles)

Tier C

oss-security2h ago

Re: Poppy: XPC Observability & Fault Injection

→ No new info (linked only)

Tier C

oss-security2h ago

Poppy: XPC Observability & Fault Injection

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

PublishedMay 15, 2026

Last enriched2h agov2

Community Vote

0 upvotes0 downvotes

No votes yet

Pin to Dashboard

Version History

Last enriched 2h ago

v2Tier C2h ago

Added vendor Openwall, product Poppy, and marked exploit as available and actively exploited, along with new tags.

vendorproductexploitAvailableactivelyExploitedtags

via oss-security

v12h ago

Initial creation

Poppy: XPC Observability & Fault Injection

Description

Affected Products

Related News (2 articles)

Community Vote

Pin to Dashboard

Verification

Vulnerability Timeline

Version History