CVE-2019-12573

HIGH

Private Internet Access VPN Client v82 - Authenticated Arbitrary File Overwrite via openvpn_launcher Log Option

Title source: llm

Description

A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for Linux and macOS could allow an authenticated, local attacker to overwrite arbitrary files. The openvpn_launcher binary is setuid root. This binary supports the --log option, which accepts a path as an argument. This parameter is not sanitized, which allows a local unprivileged user to overwrite arbitrary files owned by any user on the system, including root. This creates a denial of service condition and possible data loss if leveraged by a malicious local user.

References (1)

Core 1

Core References

Exploit, Third Party Advisory x_refsource_misc

https://github.com/mirchr/security-research/blob/master/vulnerabilities/PIA/CVE-2019-12573.txt

View Exploit ZIP pw:eip

Scores

CVSS v3 7.1

EPSS 0.0058

EPSS Percentile 43.2%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Details

CWE

CWE-59

Status published

Products (1)

londontrustmedia/private_internet_access_vpn_client 82

Published Jul 11, 2019

Tracked Since Feb 18, 2026