IXON VPN Client Local Privilege Escalation Vulnerability on Windows

Vulnerability

A local privilege escalation vulnerability has been identified in the IXON VPN Client for Windows, prior to version 1.4.4. This vulnerability allows a low-privileged user to execute code that escalates privileges to the SYSTEM level. The issue arises from a temporary configuration file in a world-writable directory, which can be overwritten, creating a race condition that enables the exploitation.

Impact

Exploitation of this vulnerability allows for local privilege escalation, giving a low-privileged user SYSTEM-level rights.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IXON VPN Client Local Privilege Escalation Vulnerability on Windows

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating