Vulnerabilities > CVE-2022-37835 - Insecure Storage of Sensitive Information vulnerability in Torguard VPN 4.8

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
torguard
CWE-922

Summary

Torguard VPN 4.8, has a vulnerability that allows an attacker to dump sensitive information, such as credentials and information about the server, without admin privileges.

Vulnerable Configurations

Part Description Count
Application
Torguard
1

Common Weakness Enumeration (CWE)