AWS VPN Flaw on macOS Allows Root Access

A critical vulnerability has been discovered in the AWS Client VPN software for macOS, tracked as CVE-2025-11462. The flaw allows a local, non-administrative user to gain full root privileges on a device through a symlink manipulation attack. The issue stems from the client's failure to properly validate log file destinations during log rotation, enabling an attacker to write to sensitive system files. Successful exploitation could lead to complete system compromise, malware installation, or data theft. AWS has released a patch in version 5.2.1, and all macOS users are urged to update immediately as no other workarounds are available.

Latest mentioned: 10-08

Earliest mentioned: 10-08

Sources

securityonline.info gbhackers.com

Also Read

Gunra Ransomware Targets Windows and Linux Systems

Gunra ransomware, active since April 2025, poses a significant threat with its dual-platform capability, targeting both Windows and Linux systems. The Windows variant uses ChaCha8 encryption and secure random number generation, making decryption impractical. In contrast, the Linux variant employs ChaCha20 encryption but suffers from a cryptographic flaw due to weak random number generation, allowing potential file recovery through brute-force attacks. Organizations must develop platform-specific threat intelligence and incident response strategies to mitigate risks effectively.

10-29Read more →