CRITICAL
OpenVPN Inc
CVE published 2026-05-26
CVE-2026-9560
CVE-2026-9560 documents a privilege escalation vulnerability in OpenVPN Connect for macOS, affecting versions 3.5.1 through 3.8.1. The flaw resides in the application's background service, where improper validation of local inter-process communication (IPC) channel requests allows unprivileged local attackers to execute arbitrary commands with elevated privileges. The CVSS 4.0 vector (AV:L/AC:L/AT:N/PR:N/ [truncated]