Manish Singh

**Name of the Vulnerable Software and Affected Versions** NetMod VPN Client version 5.3.1 **Description** The issue arises due to the improper validation of dynamically loaded libraries, allowing an attacker to execute arbitrary code by placing a malicious DLL in a directory where the application loads dependencies. This enables remote code execution. **Recommendations** For NetMod VPN Client version 5.3.1, as a temporary workaround, consider restricting the loading of dependencies from untrusted directories to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to the Windows Group Policy service and is associated with inadequate access restrictions. It allows a remote attacker to elevate their privileges. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.