We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-30164



Description

Amazon AWS Client VPN has a buffer overflow that could potentially allow a local actor to execute arbitrary commands with elevated permissions. This is resolved in 3.11.1 on Windows, 3.9.1 on macOS, and 3.12.1 on Linux. NOTE: although the macOS resolution is the same as for CVE-2024-30165, this vulnerability on macOS is not the same as CVE-2024-30165.

Reserved 2024-03-24 | Published 2024-05-28 | Updated 2025-02-13 | Assigner mitre

References

docs.aws.amazon.com/...pn-user/client-vpn-connect-linux.html

docs.aws.amazon.com/...pn-user/client-vpn-connect-macos.html

docs.aws.amazon.com/...-user/client-vpn-connect-windows.html

cve.org (CVE-2024-30164)

nvd.nist.gov (CVE-2024-30164)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2024-30164

Support options

Helpdesk Chat, Email, Knowledgebase