Purevpn: >> Purevpn >> 6.0.0 Security Vulnerabilities
The PureVPN client before 6.1.0 for Windows stores Login Credentials (username and password) in cleartext. The location of such files is %PROGRAMDATA%\purevpn\config\login.conf. Additionally, all local users can read this file.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-10-26
In PureVPN 6.0.1 on macOS, HelperTool LaunchDaemon implements an unprotected XPC service that can be abused to execute system commands as root.
CVSS Score
9.8
EPSS Score
0.004
Published
2018-02-07