Security Advisory

CVE-2018-6823

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-02-07 16:00:00

Last updated 2024-09-17 01:10:32

Assigner mitre

State PUBLISHED

Description

In the VPN client in Mailbutler Shimo before 4.1.5.1 on macOS, the com.feingeist.shimo.helper tool LaunchDaemon implements an unprotected XPC service that can be abused to execute scripts as root.

← Browse all CVEs View on cve.org ↗