CVE-2018-10171

2019-06-0521:52:43

mitre

www.cve.org

9.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.8%

JSON

Kromtech MacKeeper 3.20.4 suffers from a root privilege escalation vulnerability through its com.mackeeper.AdwareAnalyzer.AdwareAnalyzerPrivilegedHelper component. The AdwareAnalzyerPrivilegedHelper tool implements an XPC service that allows an unprivileged application to connect and execute shell scripts as the root user.

References

versprite.com/advisories/mackeeper/