NordVPN CVE-2018-3952 Command Injection Vulnerability

description-logoDescription

An exploitable code execution vulnerability exists in the connect functionality of NordVPN 6.14.28.0. A specially crafted configuration file can cause a privilege escalation, resulting in the execution of arbitrary commands with system privileges.

affected-products-logoAffected Applications

NordVPN

CVE References

CVE-2018-3952