CVE-2018-4004

Summary

An exploitable privilege escalation vulnerability exists in the Shimo VPN 4.1.5.1 helper service in the disconnectService functionality. A non-root user is able to kill any privileged process on the system. An attacker would need local access to the machine for a successful exploit.

Affected Software

VendorProductVersion RangeStatus
n/aShimo VPNShimo VPN 4.1.5.1affected

Weaknesses

  • local privilege escalation

ADP Enrichment

CVE Program Container

Additional References

References