By the Year
In 2023 there have been 0 vulnerabilities in McAfee Tunnelbear . Tunnelbear did not have any published security vulnerabilities last year.
It may take a day or so for new Tunnelbear vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent McAfee Tunnelbear Security Vulnerabilities
TunnelBear 22.214.171.124 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "TunnelBearMaintenance" service
9.8 - Critical
- April 26, 2018
TunnelBear 126.96.36.199 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "TunnelBearMaintenance" service. This service establishes a NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed methods. The "OpenVPNConnect" method accepts a server list argument that provides attacker control of the OpenVPN command line. An attacker can specify a dynamic library plugin that should run for every new VPN connection attempt. This plugin will execute code in the context of the SYSTEM user.
Incorrect Permission Assignment for Critical Resource