Lucene search
K

17 matches found

CVE
CVE
added 2026/06/10 8:40 p.m.28 views

CVE-2026-0268

Prisma Access Agent for Linux contains a local authentication bypass that enables a local attacker to route traffic outside the VPN tunnel. The issue is limited to Linux; Windows, macOS, iOS, Android, and ChromeOS variants are not affected. The CVE entry notes a local attack vector with low privi...

6.9CVSS5.5AI score0.00115EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-4900

Malware in sbrugna...

7.8CVSS7.9AI score0.00476EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 6:56 a.m.6 views

CVE-2024-11624

there is a possible to add apps to bypass VPN due to Undeclared Permission . This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.1AI score0.00076EPSS
Exploits0References1
CVE
CVE
added 2025/02/05 5:31 p.m.60 views

CVE-2025-23415

CVE-2025-23415 affects BIG-IP APM, specifically the endpoint inspection in the APM access policy, where a missing integrity check could allow bypassing endpoint inspection checks for VPN connections initiated via the BIG-IP APM browser network access VPN client (Windows, macOS, Linux). The issue ...

3.1CVSS3.9AI score0.00134EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/01/03 3:28 a.m.13 views

CVE-2024-11624

there is a possible to add apps to bypass VPN due to Undeclared Permission . This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00076EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/03 3:28 a.m.5 views

CVE-2024-11624

there is a possible to add apps to bypass VPN due to Undeclared Permission . This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.2AI score0.00076EPSS
Exploits0References1
OSV
OSV
added 2024/08/25 5:15 p.m.5 views

CVE-2023-48957

PureVPN Linux client 2.0.2-Productions fails to properly handle DNS queries, allowing them to bypass the VPN tunnel and be sent directly to the ISP or default DNS servers...

5.3CVSS5.8AI score0.0044EPSS
Exploits1References2
CVE
CVE
added 2024/08/15 9:56 p.m.111 views

CVE-2024-34734

CVE-2024-34734 describes an Elevation of Privilege in Android related to FooterActionsViewModel.kt (onForegroundServiceButtonClicked): an insecure default value could allow disabling the active VPN from the lockscreen with local impact and no user interaction. The vulnerability is tracked in mult...

7.8CVSS6.8AI score0.00086EPSS
Exploits0References2Affected Software1
The Hacker News
The Hacker News
added 2024/05/09 5:55 p.m.29 views

New TunnelVision Attack Allows Hijacking of VPN Traffic via DHCP Manipulation

Researchers have detailed a Virtual Private Network VPN bypass technique dubbed TunnelVision that allows threat actors to snoop on victim's network traffic by just being on the same local network. The "decloaking" method has been assigned the CVE identifier CVE-2024-3661 CVSS score: 7.6. It impac...

7.6CVSS6.6AI score0.04063EPSS
Exploits1
Prion
Prion
added 2023/04/11 5:15 p.m.17 views

Code injection

A permissive list of allowed inputs vulnerability CWE-183 in FortiGate version 7.2.3 and below, version 7.0.9 and below Policy-based NGFW Mode may allow an authenticated SSL-VPN user to bypass the policy via bookmarks in the web portal...

4CVSS4.5AI score0.00437EPSS
Exploits0References1Affected Software1
HackRead
HackRead
added 2020/09/27 1:21 p.m.13 views

TikTok Global – Trump Demanded Full TikTok Ownership

By Uzair Amir How much do you know about the TikTok ban? Will, the United States take ownership rights? Can a VPN bypass the ban? Find out all about it here! This is a post from HackRead.com Read the original post: TikTok Global – Trump Demanded Full TikTok Ownership...

1.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/08/10 12:0 a.m.44 views

openSUSE Security Update : opera (openSUSE-2020-1172)

This update for opera fixes the following issues : - Update to version 70.0.3728.71 - DNA-86267 Make Recently closed tabs appearance consistent with Search for open tabs. - DNA-86988 Opera 70 translations - DNA-87530 Zen news leads not loading - DNA-87636 Fix displaying folder icon for closed...

9.6CVSS7.7AI score0.1132EPSS
Exploits13References27
ThreatPost
ThreatPost
added 2020/03/27 2:43 p.m.68 views

Apple Unpatched VPN Bypass Bug Impacts iOS 13, Warn Researchers

An unpatched bug in the latest version of Apple’s iOS is blocking virtual private network VPN applications from cloaking some private data transmitted between a device and the servers they are requesting data from. While the bug remains unpatched, Apple is suggesting steps users can take to reduc...

7.3AI score
Exploits0References14
RedHat Linux
RedHat Linux
added 2018/10/30 11:52 a.m.4 views

NetworkManager: Information exposure in DNS resolver

An information exposure vulnerability has been found in NetworkManager when dnsmasq is used in DNS processing mode. An attacker in control of a DNS server could receive DNS queries even though a Virtual Private Network VPN was configured on the vulnerable machine...

7.5CVSS6.5AI score0.02135EPSS
Exploits0References4
NVD
NVD
added 2008/10/23 10:0 p.m.28 views

CVE-2008-3815

Unspecified vulnerability in Cisco Adaptive Security Appliances ASA 5500 Series and PIX Security Appliances 7.0 before 7.083, 7.1 before 7.1278, 7.2 before 7.2416, 8.0 before 8.046, and 8.1 before 8.1113, when configured as a VPN using Microsoft Windows NT Domain authentication, allows remote...

4.3CVSS6.7AI score0.01547EPSS
Exploits1References8
Cvelist
Cvelist
added 2007/03/07 12:0 a.m.22 views

CVE-2007-1309

Novell Access Management 3 SSLVPN Server allows remote authenticated users to bypass VPN restrictions by making policy.txt read-only, disconnecting, then manually modifying policy.txt...

6.3AI score0.01831EPSS
Exploits0References5
CVE
CVE
added 2007/03/07 12:0 a.m.49 views

CVE-2007-1309

CVE-2007-1309 - detailed findings : The vulnerability affects Novell Access Management 3 SSLVPN Server. It allows remote authenticated users to bypass VPN restrictions by manipulating policy.txt: first set policy.txt read-only to disconnect, then modify policy.txt to alter policies. The underlyin...

9CVSS6.3AI score0.01831EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder