NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-9560

Summary	Privilege escalation via background service of OpenVPN Connect 3.5.1 through 3.8.1 on macOS allows attackers to execute arbitrary commands with elevated privileges via local IPC channel
Publication Date	May 27, 2026, 3:16 a.m.
Registration Date	May 27, 2026, 4:09 a.m.
Last Update	May 27, 2026, 3:16 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://openvpn.net/connect-docs/macos-release-notes.html	security@openvpn.net

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-78	OSコマンド・インジェクション	https://cwe.mitre.org/data/definitions/78.html
2	CWE-270	特権コンテキストの切り替えエラー	https://cwe.mitre.org/data/definitions/270.html
3	CWE-648	特権 API の不適切な使用	https://cwe.mitre.org/data/definitions/648.html
4	CWE-267	危険なアクションで定義された権限	https://cwe.mitre.org/data/definitions/267.html