Unrated severityNVD Advisory· Published Jul 11, 2019· Updated Aug 4, 2024
CVE-2019-12574
CVE-2019-12574
Description
A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v1.0 for Windows could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The PIA client is vulnerable to a DLL injection vulnerability during the software update process. The updater loads several libraries from a folder that authenticated users have write access to. A low privileged user can leverage this vulnerability to execute arbitrary code as SYSTEM.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- London Trust Media/Private Internet Access VPN Clientdescription
- Range: 1.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.