CVE-2022-37835
HIGHTorguard VPN 4.8 - Unauthenticated Sensitive Information Exposure
Title source: llmDescription
Torguard VPN 4.8, has a vulnerability that allows an attacker to dump sensitive information, such as credentials and information about the server, without admin privileges.
References (2)
Core 2
Core References
Product x_refsource_misc
https://torguard.net/
Third Party Advisory x_refsource_misc
https://almorabea.net/cves/torguard.html
Scores
CVSS v3
7.5
EPSS
0.0056
EPSS Percentile
42.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-922
Status
published
Products (1)
torguard/vpn
4.8
Published
Sep 12, 2022
Tracked Since
Feb 18, 2026