📦

virtual_private_network_software_development_kit

Vendor: pango

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 0 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 14.76% Exploit Prob.

Latest CVE CVE-2020-12828 May 21

Security Vulnerability Index

Page 1 / 1

9.8 CVSS

CVE-2020-12828

Exploit Found

An issue was discovered in AnchorFree VPN SDK before 1.3.3.218. The VPN SDK service takes certain executable locations over a socket bound to localhost. Binding to the socket and providing a path where a malicious executable file resides leads to executing the malicious executable file with SYSTEM privileges.

EPSS: 14.76%

Severity: CRITICAL

May 21, 2020

Displaying 1 of 1 Total Entries

Total 1 Sections