Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| AirVPN | Eddie | unaffected |
|
No data.
No data available yet.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Thu, 09 Apr 2026 21:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| CPEs | cpe:2.3:a:airvpn:eddie:2.24.6:*:*:*:*:macos:*:* | |
| Metrics |
cvssV3_1
|
Tue, 03 Mar 2026 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Tue, 06 Jan 2026 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 06 Jan 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | AirVPN Eddie on MacOS contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root.This issue affects Eddie: 2.24.6. | |
| Title | Eddie VPN 2.24.6 - Local Privilege Escalation | |
| First Time appeared |
Airvpn
Airvpn eddie |
|
| Weaknesses | CWE-732 | |
| CPEs | cpe:2.3:a:airvpn:eddie:2.24.6:*:macos:*:*:*:*:* | |
| Vendors & Products |
Airvpn
Airvpn eddie |
|
| References |
| |
| Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: Fluid Attacks
Published:
Updated: 2026-03-03T16:20:07.809Z
Reserved: 2025-12-19T16:18:42.337Z
Link: CVE-2025-14979
Vulnrichment
Updated: 2026-01-06T15:36:53.656Z
NVD
Status : Analyzed
Published: 2026-01-06T16:15:51.150
Modified: 2026-04-09T21:17:28.367
Link: CVE-2025-14979
Redhat
No data.
OpenCVE Enrichment
No data.