An exploitable privilege escalation ... CVE-2018-4008

7.2 AV AC AU C I A
发布: 2019-04-15
修订: 2019-06-11

An exploitable privilege escalation vulnerability exists in the Shimo VPN helper service in the RunVpncScript command. The command takes a user-supplied script argument and executes it under root context. A user with local access can use this vulnerability to raise their privileges to root. An attacker would need local access to the machine to successfully exploit this bug.