High severity7.5NVD Advisory· Published Dec 9, 2021· Updated Jun 17, 2026
CVE-2021-20145
CVE-2021-20145
Description
Gryphon Tower routers contain an unprotected openvpn configuration file which can grant attackers access to the Gryphon homebound VPN network which exposes the LAN interfaces of other users' devices connected to the same service. An attacker could leverage this to make configuration changes to, or otherwise attack victims' devices as though they were on an adjacent network.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- www.tenable.com/security/research/tra-2021-51nvdExploitVendor Advisory
News mentions
0No linked articles in our index yet.