CyberGhost VPN for Windows Vulnerable to Command Injection | allinfosecnews.com

May 9, 2023, 4:52 p.m. | Heinrich Long

RestorePrivacy restoreprivacy.com

The Windows client of CyberGhost VPN older than version 8.3.10.10015 is vulnerable to a flaw that could allow attackers to perform command line injection and escalate their privileges on the impacted system. According to a report by the security researcher who discovered the flaw, a specially crafted JSON payload sent to the CyberGhost RPC service …

The post CyberGhost VPN for Windows Vulnerable to Command Injection appeared first on RestorePrivacy.

attackers client command command injection command line cyberghost flaw injection json payload privacy and security news privileges report researcher security security researcher system version vpn vulnerable windows

More from restoreprivacy.com / RestorePrivacy

Proton Mail Discloses User Data Leading to Arrest in Spain 1 week, 3 days ago | restoreprivacy.com

arrest case data email +19

Flaws in Android Cause Some VPN Apps to Suffer From DNS Leaks 1 week, 6 days ago | restoreprivacy.com

android apps april bugs +14

Bitwarden Launches Authenticator App for iOS and Android 2 weeks, 1 day ago | restoreprivacy.com

android app authentication authenticator +12

NordVPN Launches Spring Sale: 74% Off + 3 Months Extra 2 weeks, 1 day ago | restoreprivacy.com

article cost deals guide +12

Data Breach at Kaiser Permanente Affects 13.4 Million People 3 weeks ago | restoreprivacy.com

bing breach companies data +27

Europol Issues Urgent Call Against E2EE on Meta’s Platforms 3 weeks, 5 days ago | restoreprivacy.com

call child communication communication platforms +21

Cerebral to Pay $7 Million for Using Trackers on its Site 1 month ago | restoreprivacy.com

cerebral charges consumer failure +15

DuckDuckGo Launches VPN Product Bundled With ID Protections 1 month ago | restoreprivacy.com

data duckduckgo free identity +21

Google Adds Privacy-Minded Crowdsourced Tracking on ‘Find My Device’ 1 month, 1 week ago | restoreprivacy.com

android android devices android users app +19

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Sr. Security Engineer

@ BedRock Systems | San Francisco, Boston, DC, Berlin, Munich, Bengaluru

View on infosec-jobs.com

Project Manager - Project Principal Consultant

@ SAP | Istanbul, TR, 34700

View on infosec-jobs.com

Software Security Engineer

@ Ledger | Paris, France

View on infosec-jobs.com