43 matches found
CVE-2025-11955
Incorrect validation of OCSP certificates vulnerability in TheGreenBow VPN, versions 7.5 and 7.6. During the IKEv2 authentication step, the OCSP-enabled VPN client establishes the tunnel even if it does not receive an OCSP response or if the OCSP response signature is invalid...
CVE-2025-11955 Incorrect validation of OCSP certificates in TheGreenBow VPN Client Windows Enterprise
Incorrect validation of OCSP certificates vulnerability in TheGreenBow VPN, versions 7.5 and 7.6. During the IKEv2 authentication step, the OCSP-enabled VPN client establishes the tunnel even if it does not receive an OCSP response or if the OCSP response signature is invalid...
CVE-2025-11955 Incorrect validation of OCSP certificates in TheGreenBow VPN Client Windows Enterprise
Incorrect validation of OCSP certificates vulnerability in TheGreenBow VPN, versions 7.5 and 7.6. During the IKEv2 authentication step, the OCSP-enabled VPN client establishes the tunnel even if it does not receive an OCSP response or if the OCSP response signature is invalid...
EUVD-2025-36160
Incorrect validation of OCSP certificates vulnerability in TheGreenBow VPN, versions 7.5 and 7.6. During the IKEv2 authentication step, the OCSP-enabled VPN client establishes the tunnel even if it does not receive an OCSP response or if the OCSP response signature is invalid...
TheGreenBow VPN 安全漏洞
TheGreenBow VPN is a VPN client software from the French company TheGreenBow. A security vulnerability exists in TheGreenBow VPN versions 7.5 and 7.6 that stems from incorrect OCSP certificate validation and could lead to the creation of insecure VPN tunnels...
PT-2025-43935
Name of the Vulnerable Software and Affected Versions TheGreenBow VPN versions 7.5 through 7.6 Description The software does not properly validate OCSP certificates. During the IKEv2 authentication process, the VPN client establishes a tunnel even if an OCSP response is not received or if the OCS...
EUVD-2009-2906
Malware in sbrugna...
CVE-2024-45750
An issue in TheGreenBow Windows Standard VPN Client 6.87.108 and older, Windows Enterprise VPN Client 6.87.109 and older, Windows Enterprise VPN Client 7.5.007 and older, Android VPN Client 6.4.5 and older VPN Client Linux 3.4 and older, VPN Client MacOS 2.4.10 and older allows a remote attacker ...
CVE-2023-47267
An issue discovered in TheGreenBow Windows Enterprise Certified VPN Client 6.52, Windows Standard VPN Client 6.87, and Windows Enterprise VPN Client 6.87 allows attackers to gain escalated privileges via crafted changes to memory mapped file...
CVE-2024-45750
An issue in TheGreenBow Windows Standard VPN Client 6.87.108 and older, Windows Enterprise VPN Client 6.87.109 and older, Windows Enterprise VPN Client 7.5.007 and older, Android VPN Client 6.4.5 and older VPN Client Linux 3.4 and older, VPN Client MacOS 2.4.10 and older allows a remote attacker ...
CVE-2024-45750
An issue in TheGreenBow Windows Standard VPN Client 6.87.108 and older, Windows Enterprise VPN Client 6.87.109 and older, Windows Enterprise VPN Client 7.5.007 and older, Android VPN Client 6.4.5 and older VPN Client Linux 3.4 and older, VPN Client MacOS 2.4.10 and older allows a remote attacker ...
CVE-2024-45750
Summary (CVE-2024-45750) : TheGreenBow VPN clients across platforms are affected by an issue that allows a remote attacker to execute arbitrary code during the IKEv2 authentication phase due to acceptance of malformed ECDSA signatures, leading to tunnel establishment. Affected products and versio...
TheGreenBow Windows Certified VPN Client 安全漏洞
TheGreenBow Windows Certified VPN Client is a client VPN from TheGreenBow. A security vulnerability exists in TheGreenBow Windows Certified VPN Client. A remote attacker could exploit the vulnerability to execute arbitrary code via the IKEv2 authentication phase...
PT-2024-31747 · Thegreenbow · Thegreenbow Windows Standard Vpn Client +4
Name of the Vulnerable Software and Affected Versions: TheGreenBow Windows Standard VPN Client versions 6.87.108 and older TheGreenBow Windows Enterprise VPN Client versions 6.87.109 and older TheGreenBow Windows Enterprise VPN Client versions 7.5.007 and older TheGreenBow Android VPN Client...
CVE-2024-45750
An issue in TheGreenBow Windows Standard VPN Client 6.87.108 and older, Windows Enterprise VPN Client 6.87.109 and older, Windows Enterprise VPN Client 7.5.007 and older, Android VPN Client 6.4.5 and older VPN Client Linux 3.4 and older, VPN Client MacOS 2.4.10 and older allows a remote attacker ...
CVE-2023-47267
An issue discovered in TheGreenBow Windows Enterprise Certified VPN Client 6.52, Windows Standard VPN Client 6.87, and Windows Enterprise VPN Client 6.87 allows attackers to gain escalated privileges via crafted changes to memory mapped file...
CVE-2023-47267
An issue discovered in TheGreenBow Windows Enterprise Certified VPN Client 6.52, Windows Standard VPN Client 6.87, and Windows Enterprise VPN Client 6.87 allows attackers to gain escalated privileges via crafted changes to memory mapped file...
CVE-2023-47267
An issue discovered in TheGreenBow Windows Enterprise Certified VPN Client 6.52, Windows Standard VPN Client 6.87, and Windows Enterprise VPN Client 6.87 allows attackers to gain escalated privileges via crafted changes to memory mapped file...
TheGreenBow Windows Certified VPN Client Security Vulnerability
TheGreenBow Windows Certified VPN Client is a client VPN from TheGreenBow. TheGreenBow Windows Certified VPN Client suffers from a security vulnerability that stems from an attacker's ability to cause elevation of privilege via a carefully crafted memory-mapped file...
CVE-2023-47267
The CVE-2023-47267 issue affects TheGreenBow Windows VPN clients: Enterprise Certified VPN Client 6.52, Standard VPN Client 6.87, and Enterprise VPN Client 6.87. Root cause is privilege escalation via crafted changes to memory-mapped files. Impact is elevated privileges, with network-vector-like ...