Pritunl Client Electron

pritunl-client-electron

Vendor: Pritunl • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-25372 1Pritunl 1Pritunl Client Electron Nov 21, 2024 Feb 20, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Pritunl Client through 1.2.3019.52 on Windows allows local privilege escalation, related to an ACL entry for CREATOR OWNER in platform_windows.go.
CVE-2020-27519 1Pritunl 1Pritunl Client Electron Nov 21, 2024 Apr 30, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Pritunl Client v1.2.2550.20 contains a local privilege escalation vulnerability in the pritunl-service component. The attack vector is: malicious openvpn config. A local attacker could leverage the log and log-append alo...Show more Pritunl Client v1.2.2550.20 contains a local privilege escalation vulnerability in the pritunl-service component. The attack vector is: malicious openvpn config. A local attacker could leverage the log and log-append along with log injection to create or append to privileged script files and execute code as root/SYSTEM.Show less
CVE-2020-25989 1Pritunl 1Pritunl Client Electron Nov 21, 2024 Nov 19, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Privilege escalation via arbitrary file write in pritunl electron client 1.0.1116.6 through v1.2.2550.20. Successful exploitation of the issue may allow an attacker to execute code on the effected system with root privil...Show more Privilege escalation via arbitrary file write in pritunl electron client 1.0.1116.6 through v1.2.2550.20. Successful exploitation of the issue may allow an attacker to execute code on the effected system with root privileges.Show less