Security Advisory

CVE-2025-65199

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-10 18:04:35

Last updated 2025-12-18 19:54:18

Assigner cisa-cg

State PUBLISHED

Description

A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the adapterName parameter of the changeMTU function. Fixed in Windscribe v2.18.3-alpha and v2.18.8.

← Browse all CVEs View on cve.org ↗