{“lastseen”:””,”description”:”VeeVPN 1.6.1 contains an unquoted service path vulnerability in the VeePNService that allows remote attackers to execute code during startup or reboot with escalated privileges. Attackers can exploit this by providing a malicious service name, allowing them to inject commands and run as LocalSystem.”,”published”:”2025-12-04T20:46:08.742Z”,”modified”:”2025-12-04T20:46:08.742Z”,”type”:”cve”,”title”:”VeeVPN 1.6.1 – Unquoted Service Path Remote Code Execution”,”source”:”VulnCheck”,”references”:”https:\/\/www.exploit-db.com\/exploits\/52088\\nhttps:\/\/veepn.com\/\\nhttps:\/\/github.com\/veepn\/veepn\\nhttps:\/\/www.vulncheck.com\/advisories\/veevpn-161-unquoted-service-path-remote-code-execution”,”id”:”CVE-2025-66575″,”bulletinFamily”:””,”cwe”:[“CWE-428″],”cvelist”:null,”sourceData”:”VeePN VeeVPN 1.6.1″,”sourceHref”:””,”cvss”:{“score”:8.5,”severity”:”HIGH”,”vector”:”CVSS:4.0\/AV:L\/AC:L\/AT:N\/PR:N\/UI:P\/VC:H\/VI:H\/VA:H\/SC:H\/SI:H\/SA:H\/E:P”,”version”:”4.0″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”VeeVPN”,”version”:”1.6.1″,”vendor”:”VeePN”,”ai_description”:”Unquoted service path vulnerability allowing remote code execution with escalated privileges”,”ai_severity”:”High”,”ai_vendor”:”VeePN”,”ai_product”:”VeeVPN”,”ai_version”:”1.6.1″,”ai_score”:8.5}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”VeeVPN 1.6.1 contains an unquoted service path vulnerability in the VeePNService that allows remote attackers to execute code during startup or reboot with escalated privileges….<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,44,12,15,13,7,11,5],"class_list":["post-28697","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-85","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n