Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2024-4877

Опубликовано: 03 апр. 2025
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 8.8

Описание

OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges

РелизСтатусПримечание
devel

not-affected

Windows only
esm-infra-legacy/trusty

not-affected

Windows only
esm-infra/bionic

not-affected

Windows only
esm-infra/focal

not-affected

Windows only
esm-infra/xenial

not-affected

Windows only
focal

not-affected

Windows only
jammy

not-affected

Windows only
mantic

not-affected

Windows only
noble

not-affected

Windows only
trusty/esm

not-affected

Windows only

Показывать по

Ссылки на источники

EPSS

Процентиль: 14%
0.00045
Низкий

8.8 High

CVSS3

Связанные уязвимости

CVSS3: 8.8
nvd
4 месяца назад

OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges

CVSS3: 8.8
debian
4 месяца назад

OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, le ...

CVSS3: 8.8
github
4 месяца назад

OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges

CVSS3: 5.7
fstec
около 1 года назад

Уязвимость службы Interactive Service (iservice) клиента OpenVPN GUI программного обеспечения OpenVPN, позволяющая нарушителю получить несанкционированный доступ к учетной записи пользователя

EPSS

Процентиль: 14%
0.00045
Низкий

8.8 High

CVSS3