CVE-2024-53588

High

Published: 23 January 2025

Published

23 January 2025

Modified

15 April 2026

KEV Added

—

Patch

—

CVSS Score 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score 0.0004 13.1th percentile

Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Description

A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via placing a crafted DLL file into the path \ProgramData\iTop VPN\Downloader\vpn6.

Security Summary

CVE-2024-53588 is a DLL hijacking vulnerability in iTop VPN version 16.0. The issue allows attackers to execute arbitrary code by placing a crafted DLL file into the path \ProgramData\iTop VPN\Downloader\vpn6. It is classified under CWE-427 (Untrusted Search Path) and received a CVSS v3.1 base score of 7.8 (High), with the vector AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.

A local attacker requires no privileges and can exploit the vulnerability with low attack complexity, though user interaction is needed, such as launching the iTop VPN application. Upon successful exploitation, the attacker achieves high impacts on confidentiality, integrity, and availability through arbitrary code execution.

Details on exploitation and potential mitigations are available in the referenced GitHub repository at https://github.com/JonathanLauener/iTop-privesc, published on 2025-01-23.

Details

CWE(s): CWE-427

References

https://github.com/JonathanLauener/iTop-privesc
cve@mitre.org