exploitDog

GHSA-qp24-jcr5-x5v2

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

In PureVPN 6.0.1 on macOS, HelperTool LaunchDaemon implements an unprotected XPC service that can be abused to execute system commands as root.

In PureVPN 6.0.1 on macOS, HelperTool LaunchDaemon implements an unprotected XPC service that can be abused to execute system commands as root.

Ссылки

EPSS

Процентиль: 56%

0.00339

Низкий

9.8 Critical

CVSS3

CVE ID

Связанные уязвимости

CVE-2018-6822

CVSS3: 9.8

nvd

около 8 лет назад

In PureVPN 6.0.1 on macOS, HelperTool LaunchDaemon implements an unprotected XPC service that can be abused to execute system commands as root.

EPSS

Процентиль: 56%

0.00339

Низкий

9.8 Critical

CVSS3

CVE ID