CNNVD-202601-1017 Information

CNNVD ID

CNNVD-202601-1017

Related CVE

CVE-2025-14979

• CNNVD Published: 2026-01-06

Description (Chinese)

AirVPN Eddie是AirVPN开源的一个代理客户端。 AirVPN Eddie 2.24.6版本存在安全漏洞，该漏洞源于不安全的XPC服务，可能导致本地非特权用户权限提升至root。

Description (English)

AirVPN Eddie is an acting client of AirVPN open source. The security gap in version 2.24.6 of AirVPN Eddie, which stems from unsafe XPC services, may lead to the upgrading of local non-privileged user privileges to root.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

AirVPN

Published

2026-01-06

Last Modified

2026-02-24

References

https://fluidattacks.com/advisories/blink182 https://github.com/AirVPN/Eddie https://eddie.website/ https://access.redhat.com/security/cve/cve-2025-14979