Mozilla VPN can load an OpenSSL configuration file from an unsecured directory. A user or attacker with limited privileges could leverage this to launch arbitrary code with SYSTEM privilege. This vulnerability affects Mozilla VPN < 2.7.1.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla vpn |