CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Windscribe: >> Windscribe >> 2.18.1 Security Vulnerabilities

CVE-2025-65199

A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and v2.18.8.

CVSS Score

7.8

EPSS Score

0.001

Published

2025-12-10

Page 1

Vulnerabilities

Vulnerable Software

Windscribe: >> Windscribe >> 2.18.1 Security Vulnerabilities

Products

Pricing

Contact Us