Vulnerabilities > Shimovpn

DATE CVE VULNERABILITY TITLE RISK
2019-04-17 CVE-2018-4007 Improper Input Validation vulnerability in Shimovpn Shimo VPN 4.1.5.1
An exploitable privilege escalation vulnerability exists in the Shimo VPN 4.1.5.1 helper service in the deleteConfig functionality.
local
low complexity
shimovpn CWE-20
7.1
7.1
2019-04-17 CVE-2018-4006 Improper Input Validation vulnerability in Shimovpn Shimo VPN 4.1.5.1
An exploitable privilege escalation vulnerability exists in the Shimo VPN 4.1.5.1 helper service in the writeConfig functionality.
local
low complexity
shimovpn CWE-20
7.8
7.8
2019-04-17 CVE-2018-4005 Improper Input Validation vulnerability in Shimovpn Shimo VPN 4.1.5.1
An exploitable privilege escalation vulnerability exists in the Shimo VPN 4.1.5.1 helper service in the configureRoutingWithCommand function.
local
low complexity
shimovpn CWE-20
7.8
7.8
2019-04-17 CVE-2018-4004 Improper Input Validation vulnerability in Shimovpn Shimo VPN 4.1.5.1
An exploitable privilege escalation vulnerability exists in the Shimo VPN 4.1.5.1 helper service in the disconnectService functionality.
local
low complexity
shimovpn CWE-20
5.5
5.5
2019-04-15 CVE-2018-4009 Download of Code Without Integrity Check vulnerability in Shimovpn Shimo VPN 4.1.5.1
An exploitable privilege escalation vulnerability exists in the Shimo VPN helper service due to improper validation of code signing.
local
low complexity
shimovpn CWE-494
7.8
7.8
2019-04-15 CVE-2018-4008 Improper Privilege Management vulnerability in Shimovpn Shimo VPN 4.1.5.1
An exploitable privilege escalation vulnerability exists in the Shimo VPN 4.1.5.1 helper service in the RunVpncScript command.
local
low complexity
shimovpn CWE-269
7.8
7.8