Unrated severityNVD Advisory· Published Dec 9, 2021· Updated Aug 3, 2024
CVE-2021-20145
CVE-2021-20145
Description
Gryphon Tower routers contain an unprotected openvpn configuration file which can grant attackers access to the Gryphon homebound VPN network which exposes the LAN interfaces of other users' devices connected to the same service. An attacker could leverage this to make configuration changes to, or otherwise attack victims' devices as though they were on an adjacent network.
Affected products
1- Range: <= 04.0004.12 (Current)
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.tenable.com/security/research/tra-2021-51mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.