Local Privilege Escalation Vulnerability in AWS Client VPN Windows Client

7.3 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

During the AWS Client VPN client installation on Windows devices, the install process references the C:\usr\local\windows-x86_64-openssl-localbuild\ssl directory location to fetch the OpenSSL configuration file. As a result, a non-admin user could place arbitrary code in the configuration file. If an admin user starts the AWS Client VPN client installation process, that code could be executed with root-level privileges. This issue does not affect Linux or Mac devices.

We recommend users discontinue any new installations of AWS Client VPN on Windows prior to version 5.2.2.

Basic Information

ID CVE-2025-8069

Source AMZN

Published Jul 23, 2025 at 15:41

Modified Jul 23, 2025 at 16:21

Affected Product

Vendor AWS

Product Client VPN

Version 4.1.0

Affected Versions AWS Client VPN 4.1.0
AWS Client VPN 5.0.0

CWE Classification

CWE-276

References

aws.amazon.com /security/security-bulletins/AWS-2025-014/

{
    "lastseen": "",
    "description": "During the AWS Client VPN client installation on Windows devices, the install process references the C:\\usr\\local\\windows-x86_64-openssl-localbuild\\ssl directory location to fetch the OpenSSL configuration file. As a result, a non-admin user could place arbitrary code in the configuration file. If an admin user starts the AWS Client VPN client installation process, that code could be executed with root-level privileges. This issue does not affect Linux or Mac devices. \n\nWe recommend users discontinue any new installations of AWS Client VPN on Windows prior to version 5.2.2.",
    "published": "2025-07-23T15:41:40.310Z",
    "modified": "2025-07-23T16:21:48.305Z",
    "type": "cve",
    "title": "Local Privilege Escalation Vulnerability in AWS Client VPN Windows Client",
    "source": "AMZN",
    "references": "https://aws.amazon.com/security/security-bulletins/AWS-2025-014/",
    "id": "CVE-2025-8069",
    "bulletinFamily": "",
    "cwe": [
        "CWE-276"
    ],
    "cvelist": null,
    "sourceData": "AWS Client VPN 4.1.0\nAWS Client VPN 5.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 7.3,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Client VPN",
    "version": "4.1.0",
    "vendor": "AWS",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Local Privilege Escalation Vulnerability in AWS Client VPN Windows Client_CVE-2025-8069