IXON VPN Client Local Privilege Escalation Vulnerability

Vulnerability

A local privilege escalation vulnerability has been identified in the IXON VPN Client for Linux and macOS, prior to version 1.4.4. The issue arises from code execution allowed by a configuration file that can be manipulated by a low-privileged user. This vulnerability is exacerbated by a race condition, where a temporary configuration file in a world-writable directory can be overwritten, leading to unauthorized escalation of privileges to root.

Impact

Exploitation of this vulnerability allows a low-privileged user to gain root privileges on the affected system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IXON VPN Client Local Privilege Escalation Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating