CNNVD-202601-1920 Information

CNNVD ID

CNNVD-202601-1920

Related CVE

CVE-2022-50917

• CNNVD Published: 2026-01-13

Description (Chinese)

ProtonVPN是ProtonVPN开源的一个 VPN 应用程序。 ProtonVPN 1.26.0版本存在代码问题漏洞，该漏洞源于WireGuard服务配置路径未加引号，可能导致本地攻击者执行任意代码。

Description (English)

ProtonVPN is a VPN application that is an open source for ProtonVPN. Version 1.26.0 of ProtonVPN has a code gap, which stems from the lack of quotation marks on the WireGuard service configuration path, which may lead local attackers to enforce any code.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

ProtonVPN

Published

2026-01-13

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/protonvpn-unquoted-service-path https://www.exploit-db.com/exploits/50837 https://protonvpn.com/ https://access.redhat.com/security/cve/cve-2022-50917