x/vulndb: potential Go vuln in github.com/pritunl/pritunl-client-electron: CVE-2016-7063

[tatianab]

CVE-2016-7063 references github.com/pritunl/pritunl-client-electron, which may be a Go module.

Description:
A flaw was found in pritunl-client before version 1.0.1116.6. Arbitrary write to user specified path may lead to privilege escalation.

References:

• NIST: https://nvd.nist.gov/vuln/detail/CVE-2016-7063
• web: https://github.com/pritunl/pritunl-client-electron/releases/tag/1.0.1116.6,
• web: https://lf.lc/CVE-2016-7063.txt
• web: https://github.com/pritunl/pritunl-client-electron/releases/tag/1.0.1116.6
• Imported by: https://pkg.go.dev/github.com/pritunl/pritunl-client-electron?tab=importedby

Cross references:
No existing reports found with this module or alias.

See doc/triage.md for instructions on how to triage this report.

modules:
    - module: github.com/pritunl/pritunl-client-electron
      vulnerable_at: 0.0.0-20231108155932-13f71d94089e
      packages:
        - package: pritunl-client-electron
cves:
    - CVE-2016-7063
references:
    - web: https://github.com/pritunl/pritunl-client-electron/releases/tag/1.0.1116.6,
    - web: https://lf.lc/CVE-2016-7063.txt
    - web: https://github.com/pritunl/pritunl-client-electron/releases/tag/1.0.1116.6

[gopherbot]

Change https://go.dev/cl/540721 mentions this issue: data/excluded: batch add 135 excluded reports