A virtual private network (VPN) used by NASA, Shell, and BT has been found to have multiple vulnerabilities. 

Weaknesses in the Aviatrix VPN were detected by Immersive Labs researcher and content engineer Alex Seymour on October 7, 2019. 

The multiple local privilege escalation vulnerabilities Seymour discovered would have allowed an attacker who already had access to a machine to escalate privileges and achieve anything they wanted. With the extra level of privileges, the attacker would have been able to dive into files, folders, and network services that the user would not previously have been able to access.

Published

December 5, 2019

WRITTEN BY

Immersive Labs

Cyber Resilience,
Readiness, Confidence.
Let’s Get Started.

Take a tour of our platform and get hands-on with emerging threats, custom challenges and realistic cyber crisis simulations

Book a Demo