An exploitable code execution vulnerability exists in the connect functionality of NordVPN 6.14.28.0. A specially crafted configuration file can cause a privilege escalation, resulting in the execution of arbitrary commands with system privileges.Referenceshttp://www.securityfocus.com/bid/105312https://talosintelligence.com/vulnerability_reports/TALOS-2018-0622
