Lucene search
K

32 matches found

Cvelist
Cvelist
added 2018/11/20 7:0 p.m.22 views

CVE-2018-18858

Multiple local privilege escalation vulnerabilities have been identified in the LiquidVPN client through 1.37 for macOS. An attacker can communicate with an unprotected XPC service and directly execute arbitrary OS commands as root or load a potentially malicious kernel extension because...

8.3AI score0.01571EPSS
Exploits5References3
CVE
CVE
added 2018/11/20 7:0 p.m.72 views

CVE-2018-18858

CVE-2018-18858 describes multiple local privilege escalation flaws in the LiquidVPN for macOS client (up to v1.37). The issue arises because com.smr.liquidvpn.OVPNHelper uses the system function to execute the path in a shell command, enabling an unprotected XPC service to run arbitrary OS comman...

7.8CVSS8.2AI score0.01571EPSS
Exploits5References3Affected Software1
CVE
CVE
added 2018/11/20 7:0 p.m.60 views

CVE-2018-18856

CVE-2018-18856 concerns local privilege escalation in the LiquidVPN for macOS client (through version 1.37). The description states that an attacker can interact with an unprotected XPC service and directly execute arbitrary OS commands as root, or load a potentially malicious kernel extension, b...

7.8CVSS8.2AI score0.0161EPSS
Exploits5References3Affected Software1
Cvelist
Cvelist
added 2018/11/20 7:0 p.m.25 views

CVE-2018-18857

Multiple local privilege escalation vulnerabilities have been identified in the LiquidVPN client through 1.37 for macOS. An attacker can communicate with an unprotected XPC service and directly execute arbitrary OS commands as root or load a potentially malicious kernel extension because...

8.3AI score0.01604EPSS
Exploits5References3
CNVD
CNVD
added 2018/11/07 12:0 a.m.2 views

LiquidVPN For macOS elevation of privilege vulnerability (CNVD-2018-22843)

LiquidVPN For MacOS is a VPN software for anonymous access to the Internet based on the MacOS platform. An elevation of privilege vulnerability exists in the 'anycmd' parameter in LiquidVPN For MacOS 1.37 and 1.36 and earlier versions. An attacker can exploit this vulnerability to gain elevated...

7.8CVSS7.8AI score0.0161EPSS
Exploits5References1
CNVD
CNVD
added 2018/11/07 12:0 a.m.3 views

LiquidVPN For macOS Design Vulnerability

LiquidVPN For MacOS is a VPN software for anonymous access to the Internet based on the MacOS platform. A security vulnerability exists in LiquidVPN For MacOS 1.37 and 1.36 and earlier versions. An attacker can exploit the vulnerability to directly install arbitrary kernel extensions...

7.8CVSS7.4AI score0.01571EPSS
Exploits5References1
CNVD
CNVD
added 2018/11/07 12:0 a.m.4 views

LiquidVPN For macOS Operating System Command Injection Vulnerability

LiquidVPN For MacOS is a VPN software for anonymous access to the Internet based on the MacOS platform. An OS command injection vulnerability exists in LiquidVPN For MacOS 1.37 and 1.36 and earlier versions, which stems from the program's failure to filter parameters passed to the 'system'...

7.8CVSS7.9AI score0.01571EPSS
Exploits5References1
CNVD
CNVD
added 2018/11/07 12:0 a.m.5 views

LiquidVPN For macOS Elevation of Privilege Vulnerability

LiquidVPN For MacOS is a VPN software for anonymous access to the Internet based on the MacOS platform. An elevation of privilege vulnerability exists in the 'openvpncmd' parameter in LiquidVPN For MacOS 1.37 and 1.36 and earlier versions. An attacker can exploit this vulnerability to gain elevat...

7.8CVSS7.8AI score0.01604EPSS
Exploits5References1
exploitpack
exploitpack
added 2018/11/05 12:0 a.m.97 views

LiquidVPN 1.36 1.37 - Privilege Escalation

LiquidVPN 1.36 1.37 - Privilege Escalation / ======================================================================= Title: Multiple Privilege Escalation Vulnerabilities Product: LiquidVPN for MacOS Vulnerable versions: 1.37, 1.36 and earlier CVE IDs: CVE-2018-18856, CVE-2018-18857, CVE-2018-1885...

7.2CVSS0.8AI score0.0161EPSS
Exploits8
0day.today
0day.today
added 2018/11/05 12:0 a.m.184 views

LiquidVPN For macOS 1.3.7 Privilege Escalation Vulnerability

LiquidVPN for macOS versions 1.3.7 and below suffer from privilege escalation vulnerabilities. ======================================================================= Title: Multiple Privilege Escalation Vulnerabilities Product: LiquidVPN for MacOS Vulnerable versions: 1.37, 1.36 and earlier CVE...

1.2AI score0.0161EPSS
Exploits8
Exploit DB
Exploit DB
added 2018/11/05 12:0 a.m.58 views

LiquidVPN 1.36 / 1.37 - Privilege Escalation

/ ======================================================================= Title: Multiple Privilege Escalation Vulnerabilities Product: LiquidVPN for MacOS Vulnerable versions: 1.37, 1.36 and earlier CVE IDs: CVE-2018-18856, CVE-2018-18857, CVE-2018-18858, CVE-2018-18859 Impact: Critical Homepage...

7.8CVSS7.6AI score0.0161EPSS
Exploits8
Packet Storm
Packet Storm
added 2018/11/03 12:0 a.m.190 views

LiquidVPN For macOS 1.3.7 Privilege Escalation

======================================================================= Title: Multiple Privilege Escalation Vulnerabilities Product: LiquidVPN for MacOS Vulnerable versions: 1.37, 1.36 and earlier CVE IDs: CVE-2018-18856, CVE-2018-18857, CVE-2018-18858, CVE-2018-18859 Impact: Critical Homepage:...

1AI score0.0161EPSS
Exploits8
Rows per page
Query Builder