Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2024-25728
- EPSS 0.2%
- Veröffentlicht 11.02.2024 22:15:08
- Zuletzt bearbeitet 21.11.2024 09:01:17
ExpressVPN before 12.73.0 on Windows, when split tunneling is used, sends DNS requests according to the Windows configuration (e.g., sends them to DNS servers operated by the user's ISP instead of to the ExpressVPN DNS servers), which may allow remot...
7.5
CVE-2020-29238
- EPSS 49.6%
- Veröffentlicht 10.03.2021 03:15:12
- Zuletzt bearbeitet 21.11.2024 05:23:48
An integer buffer overflow in the Nginx webserver of ExpressVPN Router version 1 allows remote attackers to obtain sensitive information when the server running as reverse proxy via specially crafted request.
7.1
CVE-2018-15490
- EPSS 0.09%
- Veröffentlicht 02.01.2019 18:29:00
- Zuletzt bearbeitet 21.11.2024 03:50:55
An issue was discovered in ExpressVPN on Windows. The Xvpnd.exe process (which runs as a service with SYSTEM privileges) listens on TCP port 2015, which is used as an RPC interface for communication with the client side of the ExpressVPN application....
1