CVE-2020-36992
- EPSS 0.01%
- Veröffentlicht 28.01.2026 12:29:03
- Zuletzt bearbeitet 29.01.2026 16:31:00
Nord VPN 6.31.13.0 contains an unquoted service path vulnerability in its nordvpn-service that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted binary path during system startup or reboot to potentia...
CVE-2018-3952
- EPSS 0.11%
- Veröffentlicht 07.09.2018 15:29:01
- Zuletzt bearbeitet 21.11.2024 04:06:22
An exploitable code execution vulnerability exists in the connect functionality of NordVPN 6.14.28.0. A specially crafted configuration file can cause a privilege escalation, resulting in the execution of arbitrary commands with system privileges.
- EPSS 0.58%
- Veröffentlicht 16.04.2018 21:29:00
- Zuletzt bearbeitet 21.11.2024 03:40:56
NordVPN 6.12.7.0 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "nordvpn-service" service. This service establishes an NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly e...
- EPSS 0.67%
- Veröffentlicht 27.03.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 04:14:58
NordVPN 3.3.10 for macOS suffers from a root privilege escalation vulnerability. The vulnerability stems from its privileged helper tool's implemented XPC service. This XPC service is responsible for receiving and processing new OpenVPN connection re...