ProtonVPN v4.4.1 contains an unquoted service path vulnerability in the 'ProtonVPN Wireguard' service. A local attacker could exploit this by inserting malicious code into the system root path, which may execute with elevated privileges during application startup or system reboot.
| Vendor | Product | Versions |
|---|---|---|
| protonvpn | protonvpn | 4.4.1 |