NCP IPSec VPN Client MSI Installer Privilege Escallation (NCPVE-2025-0626)
Advisory ID
WGSA-2026-00002
Impact
Medium
Status
Resolved
Product Family
Other Software
Published Date
Updated Date
Workaround Available
False
CVSS Score
6.3
CVSS Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H
Summary
During certain actions such as installation, update, or uninstallation, command line windows (cmd.exe) are temporarily opened with the rights of the SYSTEM account. In older versions of Windows, it is possible to execute any commands or programs with SYSTEM privileges in these interactive command prompts. This allows an attacker to bypass administrative protection mechanisms and gain unrestricted access to the system.
Affected
This vulnerabilit affects the WatchGuard Mobile VPN with IPSec client for Windows (provided by NCP) up to and including version 15.19
Resolution
This vulnerability is resolved in the WatchGuard Mobile VPN with IPSec client for Windows (provided by NCP) version 15.33
Advisory Product List
| Product Family | Product Branch | Product List |
|---|---|---|
Other Software
|
IPSec VPN | IPSec VPN |