exploitDog

GHSA-mww5-q78w-ffpv

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel version 3.0 (Windows) and OpenVPN Connect version 3.1 (Windows) allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder.

Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel version 3.0 (Windows) and OpenVPN Connect version 3.1 (Windows) allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder.

Ссылки

EPSS

Процентиль: 69%

0.00637

Низкий

CVE ID

Дефекты

CWE-428

Связанные уязвимости

CVE-2014-5455

nvd

почти 11 лет назад

Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel version 3.0 (Windows) and OpenVPN Connect version 3.1 (Windows) allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder.

EPSS

Процентиль: 69%

0.00637

Низкий

CVE ID

Дефекты

CWE-428