Lucene search
China National Vulnerability DatabaseCNVD-2022-65325HistoryApr 18, 2022 - 12:00 a.m.
Amazon AWS VPN Client has an unspecified vulnerability
2022-04-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
21
0.0005 Low
EPSS
Percentile
17.9%
Amazon AWS VPN Client is a fully managed remote access VPN solution from Amazon.com, Inc. A security vulnerability exists in Amazon AWS VPN Client for Windows version 2.0.0, which stems from the disclosure of a user’s Net-NTLMv2 hash when importing VPN configuration files. information, an attacker could exploit the vulnerability to write arbitrary files as SYSTEM and take partial control of the file contents.
| CPE | Name | Operator | Version |
|---|---|---|---|
| amazon aws vpn client for windows | eq | 2.0.0 |
Related
nvd
nvd
CVE-2022-25165
2022-04-14 16:15:08
rhino
rhino
CVE-2022-25165: Privilege Escalation to SYSTEM in AWS VPN Client
2022-04-12 09:30:00
cve
cve
CVE-2022-25165
2022-04-14 16:15:08
cvelist
cvelist
CVE-2022-25165
2022-04-14 15:19:00
prion
prion
Race condition
2022-04-14 16:15:00
hivepro
hivepro
Two Vulnerabilities discovered in AWS Client VPN
2022-04-20 06:34:13
Weekly Threat Digest: 11 – 17 April 2022
2022-04-21 04:59:07