CRITICAL🇵🇱 Wersja polska

CVE-2018-10170

CVSS 9.8v3.0pub. 2018-04-16upd. 2024-11-21

NordVPN 6.12.7.0 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "nordvpn-service" service. This service establishes an NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed methods. The "Connect" method accepts a class instance argument that provides attacker control of the OpenVPN command line. An attacker can specify a dynamic library plugin that should run for every new VPN connection attempt. This plugin will execute code in the context of the SYSTEM user.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Nordvpn

    APP
    Nordvpn
    6.12.7.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPEVPN
CWE
References

Related vulnerabilities

CVE-2018-3952HIGH8.8ten sam produkt

An exploitable code execution vulnerability exists in the connect functionality of NordVPN 6.14.28.0. A specia...

CVE-2018-9105HIGH8.8ten sam produkt

NordVPN 3.3.10 for macOS suffers from a root privilege escalation vulnerability. The vulnerability stems from ...

CVE-2019-25572MEDIUM6.9ten sam produkt

NordVPN 6.19.6 contains a denial of service vulnerability that allows local attackers to crash the application...