Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An invalid Polkit Authentication check and missing authentication requirements for D-Bus methods allowed any local user to configure arbitrary VPN setups. *This bug only affects Mozilla VPN on Linux. Other operating systems are unaffected.* This vulnerability affects Mozilla VPN 2.16.1 < (Linux).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla VPN 安全漏洞
Vulnerability Description
Mozilla VPN是美国Mozilla基金会的开源虚拟专用网络Web浏览器扩展,桌面应用程序和移动应用程序。 Mozilla VPN(Linux)存在安全漏洞,该漏洞源于该应用存在无效的 Polkit 身份验证检查和缺少 D-Bus 方法的身份验证,允许任何本地用户配置任意 VPN 设置。
CVSS Information
N/A
Vulnerability Type
N/A