vpn · threatengine.sh

CVE-2025-5687

< 2.28.0

A vulnerability in Mozilla VPN on macOS allows privilege escalation from a normal user to root. *This bug only affects Mozilla VPN

7.8HIGH

CVE-2025-25568

all versions

SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. NOTE: the

9.8CRITICAL

CVE-2025-25567

all versions

SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in Internat.c via the UniToStrForSingleChars function. NOTE: the Supplier

9.8CRITICAL

CVE-2025-25566

all versions

Memory Leak vulnerability in SoftEtherVPN 5.02.5187 allows an attacker to cause a denial of service via the UnixMemoryAlloc functi

5.6MEDIUM

CVE-2025-25565

all versions

SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in the Command.c file via the PtMakeCert and PtMakeCert2048 functions. NO

9.8CRITICAL

CVE-2024-41183

< 5.8.1030

Trend Micro VPN, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite under specific conditions that can lead t

7.8HIGH

CVE-2023-32634

all versions

An authentication bypass vulnerability exists in the CiRpcServerThread() functionality of SoftEther VPN 5.01.9674 and 4.41-9782-be

7.8HIGH

CVE-2023-32275

all versions

An information disclosure vulnerability exists in the CtEnumCa() functionality of SoftEther VPN 4.41-9782-beta and 5.01.9674. Spec

5.5MEDIUM

CVE-2023-31192

all versions

An information disclosure vulnerability exists in the ClientConnect() functionality of SoftEther VPN 5.01.9674. A specially crafte

5.3MEDIUM

CVE-2023-27516

all versions

An authentication bypass vulnerability exists in the CiRpcAccepted() functionality of SoftEther VPN 4.41-9782-beta and 5.01.9674.

7.3HIGH

CVE-2023-27395

all versions

A heap-based buffer overflow vulnerability exists in the vpnserver WpcParsePacket() functionality of SoftEther VPN 4.41-9782-beta,

9.0CRITICAL

CVE-2023-25774

all versions

A denial-of-service vulnerability exists in the vpnserver ConnectionAccept() functionality of SoftEther VPN 5.02. A set of special

7.5HIGH

CVE-2023-23581

all versions

A denial-of-service vulnerability exists in the vpnserver EnSafeHttpHeaderValueStr functionality of SoftEther VPN 5.01.9674 and 5.

7.5HIGH

CVE-2023-22325

all versions

A denial of service vulnerability exists in the DCRegister DDNS_RPC_MAX_RECV_SIZE functionality of SoftEther VPN 4.41-9782-beta, 5

5.9MEDIUM

CVE-2023-22308

all versions

An integer underflow vulnerability exists in the vpnserver OvsProcessData functionality of SoftEther VPN 5.01.9674 and 5.02. A spe

7.5HIGH

CVE-2023-4104

< 2.16.1

An invalid Polkit Authentication check and missing authentication requirements for D-Bus methods allowed any local user to configu

5.5MEDIUM

CVE-2023-36672

<= 5.9.1.1662

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating

5.7MEDIUM

CVE-2023-36671

<= 5.9.1.1662

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating

6.3MEDIUM

CVE-2022-0517

< 2.7.1

Mozilla VPN can load an OpenSSL configuration file from an unsecured directory. A user or attacker with limited privileges could l

7.8HIGH

CVE-2020-15679

>= 1.1.0 and < 1.1.0_\(1360\)

An OAuth session fixation vulnerability existed in the VPN login flow, where an attacker could craft a custom login URL, convince

7.6HIGH

CVE-2022-37835

all versions

Torguard VPN 4.8, has a vulnerability that allows an attacker to dump sensitive information, such as credentials and information a

7.5HIGH

CVE-2018-6623

all versions

An issue was discovered in Hola 1.79.859. An unprivileged user could modify or overwrite the executable with arbitrary code, which

8.8HIGH

CVE-2017-16757

all versions

Hola VPN 1.34 has weak permissions (Everyone:F) under %PROGRAMFILES%, which allows local users to gain privileges via a Trojan hor

7.8HIGH

softether vpn