CVE-2018-7493

2018-03-0520:00:00

mitre

www.cve.org

9.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.8%

JSON

CactusVPN through 6.0 for macOS suffers from a root privilege escalation vulnerability in its privileged helper tool. The privileged helper tool implements an XPC interface, which allows arbitrary applications to execute system commands as root.

References

github.com/VerSprite/research/blob/master/advisories/VS-2018-007.md