Vulnerabilities > CVE-2022-23171 - Unspecified vulnerability in Atlasvpn 2.4.2

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
atlasvpn

Summary

AtlasVPN - Privilege Escalation Lack of proper security controls on named pipe messages can allow an attacker with low privileges to send a malicious payload and gain SYSTEM permissions on a windows computer where the AtlasVPN client is installed.

Vulnerable Configurations

Part Description Count
Application
Atlasvpn
1
OS
Microsoft
1