Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vpn_client vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-2678
The Cisco VPN Client 5.0.7.0240 and 5.0.7.0290 on 64-bit Windows platforms uses weak permissions (NT AUTHORITY\INTERACTIVE:F) for cvpnd.exe, which allows local users to gain privileges by replacing this executable file with an arbitrary program, aka Bug ID CSCtn50645. NOTE: this ...
Cisco Vpn Client 5.0.7.0240
Cisco Vpn Client 5.0.7.0290
7.8
CVSSv3
CVE-2019-17387
An authentication flaw in the AVPNC_RP service in Aviatrix VPN Client up to and including 2.2.10 allows an malicious user to gain elevated privileges through arbitrary code execution on Windows, Linux, and macOS.
Aviatrix Vpn Client
7.8
CVSSv3
CVE-2019-17388
Weak file permissions applied to the Aviatrix VPN Client up to and including 2.2.10 installation directory on Windows and Linux allow a local malicious user to execute arbitrary code by gaining elevated privileges through file modifications.
Aviatrix Vpn Client
7.8
CVSSv3
CVE-2021-31776
Aviatrix VPN Client prior to 2.14.14 on Windows has an unquoted search path that enables local privilege escalation to the SYSTEM user, if the machine is misconfigured to allow unprivileged users to write to directories that are supposed to be restricted to administrators.
Aviatrix Vpn Client
7.8
CVSSv3
CVE-2019-6724
The barracudavpn component of the Barracuda VPN Client prior to version 5.0.2.7 for Linux, macOS, and OpenBSD runs as a privileged process and can allow an unprivileged local malicious user to load a malicious library, resulting in arbitrary code executing as root.
Barracuda Vpn Client
9.8
CVSSv3
CVE-2020-13417
An Elevation of Privilege issue exists in Aviatrix VPN Client prior to 2.10.7, because of an incomplete fix for CVE-2020-7224. This affects Linux, macOS, and Windows installations for certain OpenSSL parameters.
Aviatrix Controller
Aviatrix Gateway
Aviatrix Vpn Client
NA
CVE-2012-5429
The VPN driver in Cisco VPN Client on Windows does not properly interact with the kernel, which allows local users to cause a denial of service (kernel fault and system crash) via a crafted application, aka Bug ID CSCuc81669.
Cisco Vpn Client
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started