LEAP Bitmask Riseup VPN 0.21.6

CPE Details

LEAP Bitmask Riseup VPN 0.21.6
leap
bitmask_riseup_vpn
0.21.6
2022-01-06
16h42 +00:00
2022-01-08
00h42 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:leap:bitmask_riseup_vpn:0.21.6:*:*:*:*:*:*:*

Informations

Vendor

leap

Product

bitmask_riseup_vpn

Version

0.21.6

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-44466 2021-12-30 20h31 +00:00 Bitmask Riseup VPN 0.21.6 contains a local privilege escalation flaw due to improper access controls. When the software is installed with a non-default installation directory off of the system root, the installer fails to properly set ACLs. This allows lower privileged users to replace the VPN executable with a malicious one. When a higher privileged user such as an Administrator launches that executable, it is possible for the lower privileged user to escalate to Administrator privileges.
7.3
Haute