Perimeter81 macOS Application Multiple Vulnerabilities
Posted: Mon Feb 03, 2025 11:47 am
A command injection vulnerability can be used in the Perimeter81 macOS application to run arbitrary commands with administrative privileges.
Description
At the time, the latest Perimeter81 MacOS application (10.0.0.19) suffers from local privilege escalation vulnerability inside its com.perimeter81.osx.HelperTool. This HelperTool allows main application to setup things which require administrative privileges such as VPN connection, changing routing table, etc.
https://www.kb.cert.org/vuls/id/653767
Description
At the time, the latest Perimeter81 MacOS application (10.0.0.19) suffers from local privilege escalation vulnerability inside its com.perimeter81.osx.HelperTool. This HelperTool allows main application to setup things which require administrative privileges such as VPN connection, changing routing table, etc.
https://www.kb.cert.org/vuls/id/653767