Vulnerabilities > Expressvpn

DATE CVE VULNERABILITY TITLE RISK
2021-03-10 CVE-2020-29238 Integer Overflow or Wraparound vulnerability in Expressvpn 1.0
An integer buffer overflow in the Nginx webserver of ExpressVPN Router version 1 allows remote attackers to obtain sensitive information when the server running as reverse proxy via specially crafted request.
network
low complexity
expressvpn CWE-190
5.0
5.0
2019-01-02 CVE-2018-15490 Path Traversal vulnerability in Expressvpn
An issue was discovered in ExpressVPN on Windows.
local
low complexity
expressvpn CWE-22
7.1
7.1