VYPR

QVPN Device Client for Mac

by Qnap

CVEs (5)

  • CVE-2024-53694HigMar 7, 2025
    risk 0.56cvss epss 0.00

    A time-of-check time-of-use (TOCTOU) race condition vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow local attackers who have gained user access to gain access to otherwise unauthorized resources. We have already…

  • CVE-2025-53594MedJan 2, 2026
    risk 0.29cvss epss 0.00

    A path traversal vulnerability has been reported to affect several product versions. If a local attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the…

  • CVE-2022-27595Dec 19, 2024
    risk 0.00cvss epss 0.00

    An insecure library loading vulnerability has been reported to affect QVPN Device Client. If exploited, the vulnerability could allow local attackers who have gained user access to execute unauthorized code or commands. We have already fixed the vulnerability in the following…

  • CVE-2023-23371Oct 6, 2023
    risk 0.00cvss epss 0.00

    A cleartext transmission of sensitive information vulnerability has been reported to affect QVPN Device Client. If exploited, the vulnerability could allow local authenticated administrators to read sensitive data via unspecified vectors. We have already fixed the vulnerability…

  • CVE-2023-23370Oct 6, 2023
    risk 0.00cvss epss 0.00

    An insufficiently protected credentials vulnerability has been reported to affect QVPN Device Client. If exploited, the vulnerability could allow local authenticated administrators to gain access to user accounts and access sensitive data used by the user account via unspecified…