Privilege Escalation Vulnerability in SecuExtender SSL VPN Client Software

Privilege Escalation Vulnerability in SecuExtender SSL VPN Client Software

CVE-2023-5593 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

The out-of-bounds write vulnerability in the Windows-based SecuExtender SSL VPN Client software version 4.0.4.0 could allow an authenticated local user to gain a privilege escalation by sending a crafted CREATE message.

Learn more about our User Device Pen Test.