Vulnerability Summary ID: VS-2018-004 Title: PrivateVPN for MacOS Root Privilege Escalation Vulnerability CVE ID: CVE-2018-7311 CVSS Score: Not explicitly stated Vendor: PrivateVPN Product: PrivateVPN for MacOS < 2.0.31 Vulnerability Details Description: The vulnerability enables a privileged helper tool, installed as a root-level LaunchDaemon, to execute arbitrary code when the user establishes a new VPN connection. This is due to the ability of a default user to overwrite the binary. Vendor Response The vendor confirmed the issue and issued an update. Disclosure Timeline 02-20-2018: Initial contact with vendor via Twitter, Facebook, and email. 02-20-2018: Vendor responded and the issue was disclosed. 02-21-2018: Vendor additional response and notification of advisory release announcement. Credit Discovered by Benjamin Watson of VerSprite Security.