virus logo FortiClient Vulnerability

ProtonVPN CVE-2018-4010 Command Injection Vulnerability

description-logoDescription

An exploitable code execution vulnerability exists in the connect functionality of ProtonVPN VPN client 1.5.1. A specially crafted configuration file can cause a privilege escalation, resulting in the ability to execute arbitrary commands with the system\'s privileges.

affected-products-logoAffected Applications

ProtonVPN

CVE References

CVE-2018-4010

Other References

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-4010
ID 2073
Created May 27, 2021
Description
Updated		 Oct 26, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Proton Technologies AG
Patch manual
Application ProtonVPN