Primary

Context

OpenVPN Connect Privilege Escalation Vulnerability on macOS

Vulnerability

Patched

A privilege escalation vulnerability has been identified in OpenVPN Connect versions 3.5.1 through 3.8.1 on macOS. This vulnerability allows attackers to execute arbitrary commands with elevated privileges by exploiting the background service's local inter-process communication (IPC) channel.

Impact

Exploitation of this vulnerability allows for unauthorized privilege escalation, enabling attackers to execute commands with elevated rights on the affected system.

Remediation

Users can upgrade to OpenVPN Connect version 3.8.2 or later to address this vulnerability.

Added: May 26, 2026, 10:21 PM

Updated: May 26, 2026, 10:21 PM

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

10.0

exploitability

2.9

remediation

7.7

relevance

9.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

10.0

exploitability

2.9

remediation

7.7

relevance

9.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenVPN Connect Privilege Escalation Vulnerability on macOS

Vulnerability

Impact

Remediation

Affected Products

OpenVPN Connect

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating