- Description
- IXON VPN Client before 1.4.4 on Windows allows Local Privilege Escalation to SYSTEM because there is code execution from a configuration file that can be controlled by a low-privileged user. There is a race condition in which a temporary configuration file, in a world-writable directory, can be overwritten.
- Source
- cve@mitre.org
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 8.1
- Impact score
- 6
- Exploitability score
- 1.4
- Vector string
- CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
- Severity
- HIGH
- cve@mitre.org
- CWE-732
- Hype score
- Not currently trending
🔐Critical Flaws in IXON VPN Client Allow Privilege Escalation https://t.co/WVaBCC79FY Two high-severity vulnerabilities (CVE-2025-26168 & CVE-2025-26169) in IXON VPN Client versions ≤1.4.3 enable local attackers to escalate privileges to root or SYSTEM on Linux/macOS
@Huntio
13 May 2025
140 Impressions
2 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
آسیب پذیری جدیدی برای IXON VPN client با کدهای شناسایی CVE-2025-26168 و CVE-2025-26169 از نوع privilege escalation منتشر شده است. نسخه 1.4.3 و قبل از آن دارای این آسیب پذیری می باشند .این آس
@AmirHossein_sec
10 May 2025
34 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-26169 🔴 HIGH (8.1) 🏢 IXON - VPN Client 🏗️ 0 🔗 https://t.co/71bJAZtIgk 🔗 https://t.co/7t0lZET8po #CyberCron #VulnAlert #InfoSec https://t.co/oxZzwR7Lnj
@cybercronai
8 May 2025
46 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-26169 IXON VPN Client before 1.4.4 on Windows allows Local Privilege Escalation to SYSTEM because there is code execution from a configuration file that can be controlled b… https://t.co/MwGibxnxWB
@CVEnew
7 May 2025
367 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes