Cisco Talos is disclosing a series of vulnerabilities found in the Shimo VPN Helper Tool. Shimo VPN is a popular VPN client for MacOS that can be used to connect multiple VPN accounts to one application. These specific vulnerabilities were found in the “helper tool,” a feature that Shimo VPN uses to accomplish some of its privileged work.
These vulnerabilities are being released without a patch, per our disclosure policy, after repeated attempts were made to communicate with the vendor. Get all of the details over at the Talos blog here.