CVE-2021-27855

High PUBLISHED

FatPipe software allows privilege escalation

FatPipe · WARP, IPVPN, MPVPN

Not yet in CISA KEV

Exploited in the wild

Recommended Action

Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.

Confidence
High
Exploitation Status
Exploited in the wild
Observed in Sensors
No
Attempts (30d)
Unique Attacker IPs
CISA KEV
Not yet in CISA KEV
CVSS / EPSS
8.8 High

At a Glance

FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p91 and 10.2.2r42 allows a remote, authenticated attacker with read-only privileges to grant themselves administrative privileges. Older versions of FatPipe software may also be vulnerable. The FatPipe advisory identifier for this vulnerability is FPSA001.

CVE Published
Dec 15, 2021
Exploitation Reported
Oct 14, 2025
CVSS
8.8 High
EPSS
Remote Low complexity No user interaction

Affected Versions

Vendor Product Version Status
FatPipe
WARP

10.1 to < 10.1.2r60p91

Affected
FatPipe
WARP

10.2 to < 10.2.2r42

Affected
FatPipe
IPVPN

10.1 to < 10.1.2r60p91

Affected
FatPipe
IPVPN

10.2 to < 10.2.2r42

Affected
FatPipe
MPVPN

10.1 to < 10.1.2r60p91

Affected
FatPipe
MPVPN

10.2 to < 10.2.2r42

Affected

CVE References

Recommended Actions

  • Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.