THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2024-30164

Updated:2024-06-06

Description

Amazon AWS Client VPN has a buffer overflow that could potentially allow a local actor to execute arbitrary commands with elevated permissions. This is resolved in 3.11.1 on Windows, 3.9.1 on macOS, and 3.12.1 on Linux. NOTE: although the macOS resolution is the same as for CVE-2024-30165, this vulnerability on macOS is not the same as CVE-2024-30165.

References

https://docs.aws.amazon.com/vpn/latest/clientvpn-user/client-vpn-connect-linux.html

https://docs.aws.amazon.com/vpn/latest/clientvpn-user/client-vpn-connect-macos.html

https://docs.aws.amazon.com/vpn/latest/clientvpn-user/client-vpn-connect-windows.html

cve.org CVE-2024-30164

nvd.nist.gov CVE-2024-30164

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-30164