VYPR
Unrated severityNVD Advisory· Published May 21, 2020· Updated Aug 4, 2024

CVE-2020-12828

CVE-2020-12828

Description

An issue was discovered in AnchorFree VPN SDK before 1.3.3.218. The VPN SDK service takes certain executable locations over a socket bound to localhost. Binding to the socket and providing a path where a malicious executable file resides leads to executing the malicious executable file with SYSTEM privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • AnchorFree/VPN SDKdescription
  • Pango/Pangollm-fuzzy
    Range: <1.3.3.218

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.