Mobile VPN with SSL Local Privilege Escalation Vulnerability

Advisory ID

WGSA-2024-00010

CVE

CVE-2024-4944

Impact

High

Status

Resolved

Product Family

Other Software

Published Date

2024-06-27

Updated Date

2024-06-13

Workaround Available

False

CVSS Score

7.8

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

A local privilege escalation vlnerability in the WatchGuard Mobile VPN with SSL client on Windows enables a local user to execute arbitrary commands with elevated privileged.

Affected

WatchGuard Mobile VPN with SSL for Windows up to and including version 12.10

Resolution

WatchGuard Mobile VPN with SSL for Windows version 12.10.4

Credits

Defence Tech Malware Lab

Advisory Product List

Product Family

Product Branch

Product List

Other Software

SSL VPN

Advisory List

Go to