Windscribe for Linux ‘changeMTU’ local privilege escalation_CVE-2025-65199

7.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and v2.18.8.

Basic Information

ID CVE-2025-65199

Source cisa-cg

Published Dec 10, 2025 at 18:04

Affected Product

Vendor Windscribe

Product Windscribe for Linux Desktop App

Version 2.10.1

Affected Versions Windscribe Windscribe for Linux Desktop App 2.10.1
Windscribe Windscribe for Linux Desktop App 2.10.1

CWE Classification

CWE-78

References

{
    "lastseen": "",
    "description": "A command injection vulnerability exists in Windscribe for Linux Desktop App that allows a local user who is a member of the windscribe group to execute arbitrary commands as root via the 'adapterName' parameter of the 'changeMTU' function. Fixed in Windscribe v2.18.3-alpha and v2.18.8.",
    "published": "2025-12-10T18:04:35.733Z",
    "modified": "2025-12-10T18:04:35.733Z",
    "type": "cve",
    "title": "Windscribe for Linux 'changeMTU' local privilege escalation",
    "source": "cisa-cg",
    "references": "https://github.com/Windscribe/Desktop-App\nhttps://github.com/Windscribe/Desktop-App/compare/v2.18.2...v2.18.3?diff=unified&w#diff-cfc5df17057ed92112ae70a42c81c57c79f434429210ff881fb0771cf8e39b4c\nhttps://github.com/Windscribe/Desktop-App/compare/v2.18.2...v2.18.3?diff=unified&w#diff-57e27ab201a1a612609087b839e03bf87a5a063ffcc3f465a6245469bc102754\nhttps://hackingbydoing.wixsite.com/hackingbydoing/post/windscribe-vpn-local-privilege-escalation\nhttps://www.cve.org/CVERecord?id=CVE-2025-65199\nhttps://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-343-01.json",
    "id": "CVE-2025-65199",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "Windscribe Windscribe for Linux Desktop App 2.10.1\nWindscribe Windscribe for Linux Desktop App 2.10.1",
    "sourceHref": "",
    "cvss": {
        "score": 7.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Windscribe for Linux Desktop App",
    "version": "2.10.1",
    "vendor": "Windscribe",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}