cvedb.io
CVE-2018-10170
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2018-04-16T21:29:00.513 · Last modified 2026-06-17T01:33:36.833

Summary

NordVPN 6.12.7.0 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "nordvpn-service" service. This service establishes an NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed methods. The "Connect" method accepts a class instance argument that provides attacker control of the OpenVPN command line. An attacker can specify a dynamic library plugin that should run for every new VPN connection attempt. This plugin will execute code in the context of the SYSTEM user.

Affected products

nordvpn — nordvpn

Does this affect you?

Add your gear to cvedb and we'll alert you only when nordvpn ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.