CVE-2018-10169

Name of the Vulnerable Software and Affected Versions ProtonVPN version 1.3.3

Description The issue is related to insufficient access control in the ProtonVPN service, which establishes a NetNamedPipe endpoint. This allows arbitrary installed applications to connect and call publicly exposed methods, such as the Connect method. The Connect method accepts a class instance argument, providing attacker control over the OpenVPN command line. An attacker can specify a dynamic library plugin to execute code in the context of the SYSTEM user. This could allow a remote attacker to execute arbitrary code with SYSTEM privileges using the OpenVPN command line.

Recommendations For ProtonVPN version 1.3.3, consider disabling the ProtonVPN Service until a patch is available to prevent potential exploitation. Restrict access to the NetNamedPipe endpoint to minimize the risk of arbitrary code execution. Avoid using the dynamic library plugin feature in the OpenVPN command line until the issue is resolved.