510 matches found
CVE-2021-31776
Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local privilege escalation to the SYSTEM user, if the machine is misconfigured to allow unprivileged users to write to directories that are supposed to be restricted to administrators...
CVE-2019-12578
A vulnerability in the London Trust Media Private Internet Access PIA VPN Client v82 for Linux could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The openvpnlauncher.64 binary is setuid root. This binary executes /opt/pia/openvpn-64/openvpn, passing the...
CVE-2019-12576
A vulnerability in the London Trust Media Private Internet Access PIA VPN Client v82 for macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The openvpnlauncher binary is setuid root. This program is called during the connection process and executes...
CVE-2019-12577
A vulnerability in the London Trust Media Private Internet Access PIA VPN Client v82 for macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The macOS binary openvpnlauncher.64 is setuid root. This binary creates /tmp/piaupscript.sh when executed...
CVE-2019-12579
A vulnerability in the London Trust Media Private Internet Access PIA VPN Client v82 for Linux and macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The PIA Linux/macOS binary openvpnlauncher.64 binary is setuid root. This binary accepts several...
PT-2026-5692
Name of the Vulnerable Software and Affected Versions TP-Link Archer BE230 versions prior to 1.2.4 Build 20251218 rel.70420 Description A command injection issue exists that may be triggered after administrative authentication through importing a specially crafted VPN client configuration file...
CVE-2025-11955
The CVE-2025-11955 describes an OCSP certificate validation flaw in TheGreenBow VPN Client, affecting version 7.5 and 7.6. The vulnerability lets the IKEv2 VPN tunnel be established even if no OCSP response is received or if the OCSP signature is invalid, due to incorrect OCSP validation during a...
CVE-2025-11462
Improper Link Resolution Before File Access in the AWS VPN Client for macOS versions 1.3.2- 5.2.0 allows a local user to execute code with elevated privileges. Insufficient validation checks on the log destination directory during log rotation could allow a non-administrator user to create a...
CVE-2025-11462
Improper Link Resolution Before File Access in the AWS VPN Client for macOS versions 1.3.2- 5.2.0 allows a local user to execute code with elevated privileges. Insufficient validation checks on the log destination directory during log rotation could allow a non-administrator user to create a...
CVE-2025-11462 Local Privilege Escalation Vulnerability in AWS Client VPN macOS Client
Improper Link Resolution Before File Access in the AWS VPN Client for macOS versions 1.3.2- 5.2.0 allows a local user to execute code with elevated privileges. Insufficient validation checks on the log destination directory during log rotation could allow a non-administrator user to create a...
CVE-2025-11462
CVE-2025-11462 affects AWS VPN Client for macOS, versions 1.3.2–5.2.0. Improper validation of the log destination directory during log rotation allows a local user to create a symlink from a client log file to a privileged location, enabling code execution with root privileges if crafted API call...
EUVD-2020-5671
Malware in sbrugna...
EUVD-2007-4397
Malware in sbrugna...
EUVD-2019-4165
Malware in sbrugna...
EUVD-2006-2678
Malware in sbrugna...
EUVD-2014-9561
Malware in sbrugna...
EUVD-2019-4168
Malware in sbrugna...
EUVD-2005-0845
Malware in sbrugna...
EUVD-2019-7792
Malware in sbrugna...
EUVD-2019-4172
Malware in sbrugna...