Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Viscosity 1.8.2 on Windows and macOS allows an unprivileged user to set a subset of OpenVPN parameters, which can be used to load a malicious library into the memory of the OpenVPN process, leading to limited local privilege escalation. (When a VPN connection is initiated using a TLS/SSL client profile, the privileges are dropped, and the library will be loaded, resulting in arbitrary code execution as a user with limited privileges. This greatly reduces the impact of the vulnerability.)
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Viscosity 安全漏洞
Vulnerability Description
Viscosity 1.8.2版本(Windows和macOS)中存在安全漏洞。攻击者可利用该漏洞向OpenVPN进程中加载恶意的库,进而提升权限。
CVSS Information
N/A
Vulnerability Type
N/A