Mailbutler: Security Vulnerabilities
An issue in the helper tool of Mailbutler GmbH Shimo VPN Client for macOS v5.0.4 allows attackers to bypass authentication via PID re-use.
CVSS Score
9.8
EPSS Score
0.0
Published
2023-05-04
In the VPN client in Mailbutler Shimo before 4.1.5.1 on macOS, the com.feingeist.shimo.helper tool LaunchDaemon implements an unprotected XPC service that can be abused to execute scripts as root.
CVSS Score
9.8
EPSS Score
0.004
Published
2018-02-07