Skip to main content

Hotspot Shield

3 CVEs product

Monthly

CVE-2016-20060 HIGH POC This Week

Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Rated high severity (CVSS 8.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Hotspot Shield
NVD Exploit-DB VulDB
CVSS 4.0
8.5
EPSS
0.0%
CVE-2020-17365 HIGH This Week

Improper directory permissions in the Hotspot Shield VPN client software for Windows 10.3.0 and earlier may allow an authorized user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Hotspot Shield
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2018-6460 HIGH POC THREAT This Week

Hotspot Shield runs a webserver with a static IP address 127.0.0.1 and port 895. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Hotspot Shield
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
11.0%
EPSS 0% CVSS 8.5
HIGH POC This Week

Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Rated high severity (CVSS 8.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Hotspot Shield
NVD Exploit-DB VulDB
EPSS 0% CVSS 7.8
HIGH This Week

Improper directory permissions in the Hotspot Shield VPN client software for Windows 10.3.0 and earlier may allow an authorized user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Hotspot Shield
NVD
EPSS 11% CVSS 7.5
HIGH POC THREAT This Week

Hotspot Shield runs a webserver with a static IP address 127.0.0.1 and port 895. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Hotspot Shield
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy