Infosecurity Magazine: Vulnerabilities Discovered in VPN Used by NASA
The vulnerability was discovered by Immersive Labs researcher and content engineer Alex Seymour. Read the full article in InfoSecurity Magazine.
A virtual private network (VPN) used by NASA, Shell, and BT has been found to have multiple vulnerabilities.
Weaknesses in the Aviatrix VPN were detected by Immersive Labs researcher and content engineer Alex Seymour on October 7, 2019.
The multiple local privilege escalation vulnerabilities Seymour discovered would have allowed an attacker who already had access to a machine to escalate privileges and achieve anything they wanted. With the extra level of privileges, the attacker would have been able to dive into files, folders, and network services that the user would not previously have been able to access.