75 matches found
CVE-2025-65199
A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and v2.18.8...
EUVD-2025-202584
A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and v2.18.8...
CVE-2025-65199
A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and v2.18.8...
CVE-2025-65199
A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and v2.18.8...
CVE-2025-65199 Windscribe for Linux 'changeMTU' local privilege escalation
A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and v2.18.8...
CVE-2025-65199
Windscribe for Linux Desktop App is affected by a local privilege escalation vulnerability where a local user in the windscribe group can inject commands as root via the adapterName parameter of the changeMTU function. The root cause is a command injection in the changeMTU pathway, enabling arbit...
CVE-2025-65199 Windscribe for Linux 'changeMTU' local privilege escalation
A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and v2.18.8...
Windscribe Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Windscribe. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the configuration of...
Windscribe Desktop Application 安全漏洞
Windscribe Desktop Application is a VPN software from Windscribe Open Source. A security vulnerability exists in Windscribe Desktop Application versions prior to 2.18.3-alpha and prior to 2.18.8, which stems from a command injection in the adapterName parameter of the changeMTU function, which...
PT-2025-50365
Name of the Vulnerable Software and Affected Versions Windscribe versions prior to 2.18.3-alpha and prior to 2.18.8 Description A command injection issue exists in Windscribe for Linux Desktop App. A local user who is a member of the windscribe group can execute arbitrary commands as root. This i...
PT-2025-50491
Windscribe Uncontrolled Search Path Element Local Privilege Escalation Vulnerability...
EUVD-2018-3371
Malware in sbrugna...
EUVD-2020-15566
Malware in sbrugna...
EUVD-2020-20028
Malware in sbrugna...
EUVD-2024-47285
Malicious code in bioql PyPI...
EUVD-2022-44382
Malicious code in bioql PyPI...
Malicious code in windscribe (npm)
The package windscribe was found to contain malicious code...
MAL-2025-39323 Malicious code in windscribe (npm)
The package windscribe was found to contain malicious code...
CVE-2020-22809
In Windscribe v1.83 Build 20, 'WindscribeService' has an Unquoted Service Path that facilitates privilege escalation...
CVE-2020-27518
All versions of Windscribe VPN for Mac and Windows = v2.02.10 contain a local privilege escalation vulnerability in the WindscribeService component. A low privilege user could leverage several openvpn options to execute code as root/SYSTEM...