CVE-2018-6460

Name of the Vulnerable Software and Affected Versions Hotspot Shield (affected versions not specified)

Description The issue concerns a web server running on Hotspot Shield with a static IP address and port 895. This web server utilizes JSONP and stores sensitive configuration information. An unauthenticated attacker can exploit this by sending a POST request to the "/status.js" API endpoint with the parameter func=$ APPLOG.Rfunc, allowing them to extract sensitive machine information. This includes details about the user's VPN connection status, the specific VPN connected to, and the user's real IP address.

Recommendations For Hotspot Shield, consider restricting access to the "/status.js" API endpoint to prevent unauthorized data extraction until a patch is available. As a temporary workaround, disabling the $ APPLOG.Rfunc parameter in the POST request to "/status.js" may help mitigate the risk of sensitive information disclosure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.