Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
attackerkbAttackerKBAKB:B6866420-69D1-40D5-B50A-FECD6B39C0B9
HistoryDec 05, 2019 - 12:00 a.m.

CVE-2019-17387

2019-12-0500:00:00
attackerkb.com
19

EPSS

0.001

Percentile

37.5%

JSON

An authentication flaw in the AVPNC_RP service in Aviatrix VPN Client through 2.2.10 allows an attacker to gain elevated privileges through arbitrary code execution on Windows, Linux, and macOS.

Recent assessments:

kevthehermit at March 05, 2020 9:39am UTC reported:

VPN clients are commonly found on laptops for remote office workers, This is a local priv esc on all Aviatrix VPN Clients. As it is local it would need either a malicious user or an attacker with User level access looking to escalate.

When the VPN client starts it creates a locally running Web service. This service is capable of running commands in the context of the service, which runs as Root / Admin level permissions.

The service uses a set of certificates to authenticate the web service, however these certificates are included in a compiled python executable, it is it trivial to recover these certificated and therefore execute commands to gain elevated privileges.

<https://immersivelabs.com/2019/12/04/aviatrix-vpn-client-vulnerability/&gt;

Assessed Attacker Value: 3
Assessed Attacker Value: 3Assessed Attacker Value: 5

Related

prion 1
cvelist 1
nvd 1
cve 1
prion
prion
Authentication flaw
2019-12-05 18:15:00
cvelist
cvelist
CVE-2019-17387
2019-12-05 17:07:48
nvd
nvd
CVE-2019-17387
2019-12-05 18:15:12
cve
cve
CVE-2019-17387
2019-12-05 18:15:12

EPSS

0.001

Percentile

37.5%

JSON
Related for AKB:B6866420-69D1-40D5-B50A-FECD6B39C0B9
prion1cvelist1nvd1cve1