CVE-2025-8069

🗓️ 23 Jul 2025 15:41:40Reported by AMZNType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 19 Views

Local privilege escalation in AWS Client VPN Windows client allows arbitrary code execution by non-admins.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2025-8069	23 Jul 202518:29	–	circl
CNNVD	Amazon AWS VPN Client 安全漏洞	23 Jul 202500:00	–	cnnvd
Cvelist	CVE-2025-8069 Local Privilege Escalation Vulnerability in AWS Client VPN Windows Client	23 Jul 202515:41	–	cvelist
EUVD	EUVD-2025-22458	3 Oct 202520:07	–	euvd
NVD	CVE-2025-8069	23 Jul 202516:15	–	nvd
Positive Technologies	PT-2025-30596 · Openssl +1 · Openssl +1	23 Jul 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-8069	25 Jul 202516:25	–	redhatcve
The Hacker News	⚡ Weekly Recap — SharePoint Breach, Spyware, IoT Hijacks, DPRK Fraud, Crypto Drains and More	28 Jul 202512:13	–	thn
Vulnrichment	CVE-2025-8069 Local Privilege Escalation Vulnerability in AWS Client VPN Windows Client	23 Jul 202515:41	–	vulnrichment
Zero Day Initiative	Amazon AWS Client VPN Uncontrolled Search Path Element Local Privilege Escalation Vulnerability	24 Jul 202500:00	–	zdi

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Windows"
    ],
    "product": "Client VPN",
    "vendor": "AWS",
    "versions": [
      {
        "status": "affected",
        "version": "4.1.0",
        "versionType": "semver"
      },
      {
        "lessThan": "5.2.2",
        "status": "affected",
        "version": "5.0.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
aws	www.aws.amazon.com/security/security-bulletins/AWS-2025-014/
docs	www.docs.aws.amazon.com/vpn/latest/clientvpn-user/client-vpn-connect-windows-release-notes.html