Vpn

This hub aggregates every CVE we track for Vpn, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Vpn.

• CVE-2025-5687Local privilege escalation vulnerability in Mozilla VPN clients for macOS v2.27.0 and below.7.8Jun 11, 2025
• CVE-2025-25568SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. NOTE: the Supplier disputes this because the use-after-free is not in the VPN...9.8Mar 12, 2025
• CVE-2025-25567SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in Internat.c via the UniToStrForSingleChars function. NOTE: the Supplier disputes this because the behavior only enables a local user to at...9.8Mar 12, 2025
• CVE-2025-25566Memory Leak vulnerability in SoftEtherVPN 5.02.5187 allows an attacker to cause a denial of service via the UnixMemoryAlloc function. NOTE: the Supplier disputes this because the behavior is limite...5.6Mar 12, 2025
• CVE-2025-25565SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in the Command.c file via the PtMakeCert and PtMakeCert2048 functions. NOTE: the Supplier disputes this because the behavior only allows a u...9.8Mar 12, 2025
• CVE-2024-41183Trend Micro VPN, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite under specific conditions that can lead to elevation of privileges.7.8Oct 22, 2024
• BDU:2024-01729Уязвимость микропрограммного обеспечения межсетевых экранов и VPN-устройств Zyxel USG и Zyxel VPN, связанная с отсутствием аутентификации для критичной функции, позволяющая нарушителю раскрыть защищаемую информацию7.5Mar 4, 2024
• BDU:2024-01728Уязвимость службы proactor1.2 (/usr/sbin/proactor1.2/pro) микропрограммного обеспечения межсетевых экранов и VPN-устройств Zyxel USG и Zyxel VPN, позволяющая нарушителю обойти существующие ограничения безопасности9.8Mar 4, 2024
• BDU:2024-01727Уязвимость службы SMB микропрограммного обеспечения межсетевых экранов и VPN-устройств Zyxel USG и Zyxel VPN, позволяющая нарушителю вызвать отказ в обслуживании7.5Mar 4, 2024
• BDU:2024-01726Уязвимость микропрограммного обеспечения межсетевых экранов и VPN-устройств Zyxel USG и Zyxel VPN, существующая из-за непринятия мер по нейтрализации специальных элементов, используемых в команде операционной системы, позволяющая нарушителю выполнить произвольный код9.8Mar 4, 2024
• CVE-2024-1195iTop VPN IOCTL ITopVpnCallbackProcess.sys denial of service5.5Feb 2, 2024
• CVE-2023-5960An improper privilege management vulnerability in the hotspot feature of the Zyxel USG FLEX series firmware versions 4.50 through 5.37 and VPN series firmware versions 4.30 through 5.37 could allow...5.5Nov 28, 2023
• CVE-2023-5797An improper privilege management vulnerability in the debug CLI command of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50...5.5Nov 28, 2023
• CVE-2023-5650An improper privilege management vulnerability in the ZySH of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50(W) series fi...5.5Nov 28, 2023
• CVE-2023-4398An integer overflow vulnerability in the source code of the QuickSec IPSec toolkit used in the VPN feature of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware vers...7.5Nov 28, 2023