2025-12-10 18:04:35
cisa-cg
PUBLISHED
A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the adapterName parameter of the changeMTU function. Fixed in Windscribe v2.18.3-alpha and v2.18.8.