Multiple Virtual Private Network (VPN) applications store the authentication and/or session cookies insecurely in memory and/or log files.
Virtual Private Networks (VPNs) are used to create a secure connection with another network over the internet. Multiple VPN applications store the authentication and/or session cookies insecurely in memory and/or log files.
CWE-311: Missing Encryption of Sensitive Data
If an attacker has persistent access to a VPN user's endpoint or exfiltrates the cookie using other methods, they can replay the session and bypass other authentication methods. An attacker would then have access to the same applications that the user does through their VPN session.
Apply an update
Thanks to the National Defense ISAC Remote Access Working Group for reporting this vulnerability.