Client

This hub aggregates every CVE we track for Client, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.

Security Products

CVEs tracked

Critical

High

In CISA KEV

Severity distribution

HIGH15MEDIUM12CRITICAL7LOW2

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 15 most recently published vulnerabilities affecting Client.

CVE-2026-0776Discord Client Uncontrolled Search Path Element Local Privilege Escalation Vulnerability7.3Jan 23, 2026
CVE-2025-2070An improper XML parsing vulnerability was reported in the FileZ client that could allow arbitrary file reads on the system if a crafted url is visited by a local user.5.0Apr 25, 2025
CVE-2025-2069A cross-site scripting vulnerability was reported in the FileZ client that could allow execution of code if a crafted url is visited by a local user.5.0Apr 25, 2025
CVE-2025-2068An open redirect vulnerability was reported in the FileZ client that could allow information disclosure if a crafted url is visited by a local user.5.0Apr 25, 2025
CVE-2023-34298Pulse Secure Client SetupService Directory Traversal Local Privilege Escalation Vulnerability7.8May 3, 2024
CVE-2023-45160Elevated Temp Directory Execution in 1E Client8.8Oct 5, 2023
CVE-2023-451591E Client installer can perform arbitrary file deletion on protected files8.4Oct 5, 2023
CVE-2023-3892Unsafe XML parsing of 3rd party DICOM private tags may lead to XXE5.6Sep 19, 2023
CVE-2023-31184ROZCOM client6.2May 30, 2023
CVE-2016-15003FileZilla Client Installer uninstall.exe unquoted search path6.3Jul 18, 2022
CVE-2017-20112IVPN Client privileges management7.8Jun 29, 2022
CVE-2017-20107ShadeYouVPN.com Client privileges management5.3Jun 28, 2022
CVE-2020-27645The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This may allow remote authenticated users an...8.8Dec 29, 2020
CVE-2020-27644The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This may allow remote authenticated users an...8.8Dec 29, 2020
CVE-2020-27643The %PROGRAMDATA%\1E\Client directory in 1E Client 5.0.0.745 and 4.1.0.267 allows remote authenticated users and local users to create and modify files in protected directories (where they would no...6.5Dec 29, 2020

Product normalization is registry-driven with AI assist and human review. How it works