CVE-2025-11462 AWS ClientVPN macOS Client Local Privilege Escalation

2025 020 · 2026-06-05

Actions

Rate this issue

Technical Details

Affected Versions	1.3.2 through 5.2.0
Regions	all
CVE IDs	CVE-2025-11462
Migration Required	Yes
Cost Impact	Neutral

What This Means

For DevOps Teams

Patch macOS AWS ClientVPN to version 5.2.1 to resolve CVE-2025-11462, a local privilege escalation issue due to improper log validation, to prevent potential security breaches.

For Platform Teams

Deploy the updated AWS ClientVPN macOS Client version 5.2.1 across all macOS devices to address the security vulnerability and maintain system integrity.

For Executives

Implement immediate upgrade to AWS ClientVPN macOS Client version 5.2.1 to mitigate CVE-2025-11462, a critical local privilege escalation vulnerability, ensuring system and data security.

Source

View original AWS announcement →

https://aws.amazon.com/security/security-bulletins/rss/aws-2025-020/

Actions

Technical Details

What This Means

Source

Weekly AWS Digest in Your Inbox