Vulnerabilities (CVE)

Filtered by vendor V2rayl Project Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-10589 1 V2rayl Project 1 V2rayl 2024-11-21 7.2 HIGH 7.8 HIGH
v2rayL 2.1.3 allows local users to achieve root access because /etc/v2rayL/config.json is owned by a low-privileged user but contains commands that are executed as root, after v2rayL.service is restarted via Sudo.
CVE-2020-10588 1 V2rayl Project 1 V2rayl 2024-11-21 7.2 HIGH 7.8 HIGH
v2rayL 2.1.3 allows local users to achieve root access because /etc/v2rayL/add.sh and /etc/v2rayL/remove.sh are owned by a low-privileged user but execute as root via Sudo.