CVE-2025-65199 | THREATINT

Description

A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and v2.18.8.

PUBLISHED Reserved 2025-11-18 | Published 2025-12-10 | Updated 2025-12-10 | Assigner cisa-cg

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

HIGH: 7.3CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Product status

Default status

unknown

2.10.1 (custom) before 2.18.3-alpha

affected

2.10.1 (custom) before 2.18.8

affected

2.18.3-alpha

unaffected

2.18.8

unaffected

Credits

HackingByDoing

References

github.com/Windscribe/Desktop-App (url) product

github.com/...p-App/compare/v2.18.2...v2.18.3?diff=unified&w (url) patch

github.com/...p-App/compare/v2.18.2...v2.18.3?diff=unified&w (url) patch

hackingbydoing.wixsite.com/...vpn-local-privilege-escalation (url) technical-description third-party-advisory

www.cve.org/CVERecord?id=CVE-2025-65199 (url)

raw.githubusercontent.com/...IT/white/2025/va-25-343-01.json (url) government-resource third-party-advisory

cve.org (CVE-2025-65199)

nvd.nist.gov (CVE-2025-65199)

Download JSON

help @ threatint.eu