CVE-2018-6822

In PureVPN 6.0.1 on macOS, HelperTool LaunchDaemon implements an unprotected XPC service that can be abused to execute system commands as root.

Date published : 2018-02-07

https://github.com/VerSprite/research/blob/master/advisories/VS-2018-002.md