Root Privilege Escalation
VPN Unlimited for MacOS
VPN Unlimited for MacOS suffers from a root privilege escalation vulnerability in its privileged helper tool. The privileged helper tool implements an XPC interface, which allows arbitrary applications to execute system commands as root.
VPN Unlimited team is reviewing.
Vendor disclosure via email
Vendor notified via Facebook
Vendor response and follow up
Vendor requested additional information, POC and follow up
VerSprite provided vendor with additional information
Vendor notified of diclosure schedule
Vendor notified of advisory release