Mozilla Vpn

4 CVEs affecting Mozilla Vpn. Latest disclosed: 2025-06-11. Critical: 0, High: 3.

Top CVEs affecting Mozilla Vpn
CVESeverityScorePublishedSummary
CVE-2025-5687High7.82025-06-11A vulnerability in Mozilla VPN on macOS allows privilege escalation from a normal user to root. *This bug only affects Mozilla VPN on macOS. Other operating sy…
CVE-2022-0517High7.82022-12-22Mozilla VPN can load an OpenSSL configuration file from an unsecured directory. A user or attacker with limited privileges could leverage this to launch arbitr…
CVE-2020-15679High7.62022-12-22An OAuth session fixation vulnerability existed in the VPN login flow, where an attacker could craft a custom login URL, convince a VPN user to login via that…
CVE-2023-4104Medium5.52023-09-11An invalid Polkit Authentication check and missing authentication requirements for D-Bus methods allowed any local user to configure arbitrary VPN setups. *Thi…