Lucene search
K

510 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:24 a.m.7 views

CVE-2021-31776

Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local privilege escalation to the SYSTEM user, if the machine is misconfigured to allow unprivileged users to write to directories that are supposed to be restricted to administrators...

7.8CVSS7.1AI score0.00314EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:29 a.m.8 views

CVE-2019-12578

A vulnerability in the London Trust Media Private Internet Access PIA VPN Client v82 for Linux could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The openvpnlauncher.64 binary is setuid root. This binary executes /opt/pia/openvpn-64/openvpn, passing the...

7.8CVSS7.3AI score0.00808EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:28 a.m.8 views

CVE-2019-12576

A vulnerability in the London Trust Media Private Internet Access PIA VPN Client v82 for macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The openvpnlauncher binary is setuid root. This program is called during the connection process and executes...

7.8CVSS7.7AI score0.00861EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:27 a.m.9 views

CVE-2019-12577

A vulnerability in the London Trust Media Private Internet Access PIA VPN Client v82 for macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The macOS binary openvpnlauncher.64 is setuid root. This binary creates /tmp/piaupscript.sh when executed...

7.8CVSS7.6AI score0.00626EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:26 a.m.14 views

CVE-2019-12579

A vulnerability in the London Trust Media Private Internet Access PIA VPN Client v82 for Linux and macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The PIA Linux/macOS binary openvpnlauncher.64 binary is setuid root. This binary accepts several...

7.8CVSS7.3AI score0.00808EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/12/19 12:0 a.m.9 views

PT-2026-5692

Name of the Vulnerable Software and Affected Versions TP-Link Archer BE230 versions prior to 1.2.4 Build 20251218 rel.70420 Description A command injection issue exists that may be triggered after administrative authentication through importing a specially crafted VPN client configuration file...

9CVSS6.1AI score0.01887EPSS
Exploits0References13
CVE
CVE
added 2025/10/27 11:30 a.m.21 views

CVE-2025-11955

The CVE-2025-11955 describes an OCSP certificate validation flaw in TheGreenBow VPN Client, affecting version 7.5 and 7.6. The vulnerability lets the IKEv2 VPN tunnel be established even if no OCSP response is received or if the OCSP signature is invalid, due to incorrect OCSP validation during a...

8.2CVSS6.8AI score0.00259EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/09 5:10 a.m.3 views

CVE-2025-11462

Improper Link Resolution Before File Access in the AWS VPN Client for macOS versions 1.3.2- 5.2.0 allows a local user to execute code with elevated privileges. Insufficient validation checks on the log destination directory during log rotation could allow a non-administrator user to create a...

9.3CVSS7.7AI score0.00212EPSS
Exploits0References1
NVD
NVD
added 2025/10/07 8:15 p.m.6 views

CVE-2025-11462

Improper Link Resolution Before File Access in the AWS VPN Client for macOS versions 1.3.2- 5.2.0 allows a local user to execute code with elevated privileges. Insufficient validation checks on the log destination directory during log rotation could allow a non-administrator user to create a...

9.3CVSS0.00212EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/07 7:44 p.m.2 views

CVE-2025-11462 Local Privilege Escalation Vulnerability in AWS Client VPN macOS Client

Improper Link Resolution Before File Access in the AWS VPN Client for macOS versions 1.3.2- 5.2.0 allows a local user to execute code with elevated privileges. Insufficient validation checks on the log destination directory during log rotation could allow a non-administrator user to create a...

9.3CVSS7.3AI score0.00212EPSS
Exploits0References2
CVE
CVE
added 2025/10/07 7:44 p.m.14 views

CVE-2025-11462

CVE-2025-11462 affects AWS VPN Client for macOS, versions 1.3.2–5.2.0. Improper validation of the log destination directory during log rotation allows a local user to create a symlink from a client log file to a privileged location, enabling code execution with root privileges if crafted API call...

9.3CVSS7.3AI score0.00212EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-5671

Malware in sbrugna...

9.8CVSS9.2AI score0.02257EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-4397

Malware in sbrugna...

6.8CVSS6.4AI score0.00332EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-4165

Malware in sbrugna...

7.1CVSS7AI score0.00643EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-2678

Malware in sbrugna...

7.2CVSS6.4AI score0.00368EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-9561

Malware in sbrugna...

7.5CVSS7.6AI score0.03649EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-4168

Malware in sbrugna...

9.3CVSS7.7AI score0.02109EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-0845

Malware in sbrugna...

4.6CVSS6.4AI score0.00437EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-7792

Malware in sbrugna...

7.8CVSS7.6AI score0.0057EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-4172

Malware in sbrugna...

7.8CVSS7.7AI score0.00808EPSS
Exploits1References2
Rows per page
Query Builder