Vulnerability Details CVE-2022-25372
Pritunl Client through 1.2.3019.52 on Windows allows local privilege escalation, related to an ACL entry for CREATOR OWNER in platform_windows.go.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.7%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
- https://github.com/pritunl/pritunl-client-electron/blob/caa78d626198b6961f3f39eca2acd39064c2df96/CHANGES#L6
- https://github.com/pritunl/pritunl-client-electron/commit/e16d47437f8ef62546aa00edb0d64be2a7d2205b
- https://rhinosecuritylabs.com/penetration-testing/cve-2022-25372-local-privilege-escalation-in-pritunl-vpn-client/
- https://github.com/pritunl/pritunl-client-electron/blob/caa78d626198b6961f3f39eca2acd39064c2df96/CHANGES#L6
- https://github.com/pritunl/pritunl-client-electron/commit/e16d47437f8ef62546aa00edb0d64be2a7d2205b
- https://rhinosecuritylabs.com/penetration-testing/cve-2022-25372-local-privilege-escalation-in-pritunl-vpn-client/
Products affected by CVE-2022-25372
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.1.0
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.1
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.10
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.11
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.12
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.13
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.14
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.15
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.16
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.17
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.18
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.19
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.2
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.3
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.4
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.5
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.6
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.7
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.8
-
cpe:2.3:a:pritunl:pritunl-client-electron:0.10.9
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1070.17
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1075.52
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1116.6
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1141.79
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1149.25
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1154.75
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1174.20
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1174.27
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1177.2
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1187.7
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1209.98
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1210.1
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1210.71
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1212.27
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1219.32
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1222.48
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1223.17
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1258.42
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1265.1
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1265.14
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1294.3
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1294.83
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1296.88
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1303.3
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1304.41
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1311.6
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1356.36
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1359.97
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1361.39
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1363.37
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1364.22
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1364.27
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1364.29
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1380.37
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1400.11
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1429.19
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1435.1
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1436.36
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1442.97
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1461.29
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1543.29
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1561.27
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1561.29
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1561.31
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1632.42
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1653.28
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1749.25
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1768.89
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1782.9
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1804.90
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1886.21
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1888.35
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1889.51
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1907.2
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1909.80
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1951.33
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1952.30
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.1953.32
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.2079.9
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.2144.93
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.2207.23
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.2226.23
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.2317.40
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.2388.46
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.2395.64
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.2404.6
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.2418.61
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.2428.78
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.0.2440.93
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2549.5
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2550.20
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2615.73
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2624.84
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2626.63
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2631.70
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2653.1
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2685.61
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2709.72
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2737.2
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2768.85
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2799.2
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2897.44
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2916.18
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.2943.11
-
cpe:2.3:a:pritunl:pritunl-client-electron:1.2.3019.52
-
cpe:2.3:o:microsoft:windows:-