Rodzaj Network Encryption Software

Timeline

Sprzedawca »

Produkt »

Przeciwdziałanie »

Exploitability »

Access Vector »

Uwierzytelnianie »

User Interaction »

C3BM Index »

CVSSv3 Base »

CVSSv3 Temp »

VulDB »

NVD »

Sprzedawca »

Research »

Exploit 0-day »

Exploit Today »

Exploit Market Volume »

Affected Products (86): AnchorFree VPN SDK, Apache Mod-gnutls, Aviatrix OpenVPN Client, Aviatrix VPN Client, Barracuda SSL VPN, Barracuda SSL VPN 680, Barracuda SSL VPN 680Vx, Barracuda VPN Client, Check Point Check Point Vpn-1 Pro, Check Point KEv2 IPsec VPN, Check Point SecureClient, Check Point VPN-1, Check Point Vpn-1 Secureclient, Check Point VPN-1 UTM Edge, Cisco AnyConnect Network Access Manager, Cisco AnyConnect Secure Mobility Client, Cisco AnyConnect SSL VPN, Cisco SSL VPN, Cisco Vpn 30xx Concentrator, Cisco VPN 30xx Concentrator, Cisco VPN 500 Concentrator, Cisco VPN 3000 Concentrator, Cisco VPN 3002 Hardware Client, Cisco VPN 3060 Concentrator, Cisco Vpn 3080 Concentrator, Cisco VPN 5000 Client, Cisco VPN Client, Cisco VPN Concentrator, Exponent strongSwan, Forcepoint VPN Client, gnu gnutls, Gnu GnuTLS, GNU GnuTLS, GnuTLS, GnuTLS libtasn1, Hola VPN, Intoto iGateway SSL-VPN, Jazzpodiumdetor Jazzpodium De Tor, Jean-paul Calderone pyOpenSSL, London Trust Media Private Internet Access VPN Client, lua-openssl, Mod-gnutls, node-openssl, NordVPN, Nortel Contivity VPN Client, Nortel SSL VPN, ocshield DataGard VPN + AV, openssl.js, OpenSSL, OpenSSL FIPS Object Module, OpenSSL Crate, openssl gem, OpenVPN, OpenVPN Access Server, OpenVPN Connect, Perl-openssl libcrypt-openssl-dsa-perl, PortWise SSL VPN, ProtonVPN VPN Client, pyOpenSSL, Safenet Softremote VPN Client, SafeNET Softremote VPN Client, safenet vpn client, SaferVPN, Schmid ZI 620 V400 VPN 090, Shimo VPN, Shrew VPN Client, SoftEther VPN Server, SSLeay, Steganos Steganos Online Shield VPN, strongSwan, Strongswan, strongSWAN, strongswan, Symantec Clientless Vpn Gateway 4400, Synology SSL VPN Client, TheGreenBow IPSec VPN Client, TheGreenBow VPN Client, tinc VPN, Tor, tor, Tor Browser, Tor Browser Launcher, Tor Browser the Short Guide, Tor World Simple Vote, Vectura Perfect Privacy VPN Manager, VPN Unlimited

OpublikowanoBaseTempVulnerabilityProdExpPrzCVE
2020-07-145.55.3OpenVPN Access Server User Authentication Token weak authenticationAccess ServerNot DefinedOfficial FixCVE-2020-15074
2020-06-045.55.3GnuTLS Session Ticket Key weak encryptionGnuTLSNot DefinedOfficial FixCVE-2020-13777
2020-05-228.58.2Aviatrix VPN Client Incomplete Fix CVE-2020-7224 privilege escalationVPN ClientNot DefinedOfficial FixCVE-2020-13417
2020-05-219.89.4AnchorFree VPN SDK VPN SDK Service privilege escalationVPN SDKNot DefinedOfficial FixCVE-2020-12828
2020-05-046.46.1OpenVPN Access Server Management Interface XXE denial of serviceAccess ServerNot DefinedOfficial FixCVE-2020-11462
2020-04-274.74.5OpenVPN Data Channel Injection privilege escalationOpenVPNNot DefinedOfficial FixCVE-2020-11810
2020-04-216.46.1OpenSSL TLS 1.3 Handshake SSL_check_chain() denial of serviceOpenSSLNot DefinedOfficial FixCVE-2020-1967
2020-04-168.58.5Aviatrix OpenVPN Client OpenSSL Parameter privilege escalationOpenVPN ClientNot DefinedNot DefinedCVE-2020-7224
2020-04-037.37.0GnuTLS DTLS weak encryptionGnuTLSNot DefinedOfficial FixCVE-2020-11501
2020-03-236.46.1Tor Padding circpad_setup_machine_on_circ denial of serviceTorNot DefinedOfficial FixCVE-2020-10593
2020-03-236.46.1Tor CPU Exhaustion denial of serviceTorNot DefinedOfficial FixCVE-2020-10592
2020-02-286.56.5OpenVPN Connect win10 privilege escalationOpenVPN ConnectNot DefinedNot DefinedCVE-2020-9442
2020-02-279.19.1lua-openssl X.509 Certificate Validation weak authenticationlua-opensslNot DefinedNot DefinedCVE-2020-9434
2020-02-279.19.1lua-openssl X.509 Certificate Validation weak authenticationlua-opensslNot DefinedNot DefinedCVE-2020-9433
2020-02-279.19.1lua-openssl X.509 Certificate Validation openssl_x509_check_host weak authenticationlua-opensslNot DefinedNot DefinedCVE-2020-9432
2020-02-195.95.6Cisco AnyConnect Secure Mobility Client privilege escalationAnyConnect Secure Mobility ClientNot DefinedOfficial FixCVE-2020-3153
2020-02-138.58.2OpenVPN Access Server LDAP weak authenticationAccess ServerNot DefinedOfficial FixCVE-2020-8953
2020-02-069.89.8Schmid ZI 620 V400 VPN 090 SSH Subcommand Menu OS Command Injection privilege escalationZI 620 V400 VPN 090Not DefinedNot DefinedCVE-2020-6760
2020-02-024.84.8Tor Daemon information disclosureTorNot DefinedNot DefinedCVE-2020-8516
2019-12-206.66.4GnuTLS CBC Mode weak authenticationGnuTLSNot DefinedOfficial FixCVE-2015-8313
2019-12-066.36.1OpenSSL Montgomery Square memory corruptionOpenSSLNot DefinedOfficial FixCVE-2019-1551
2019-12-056.56.5Aviatrix VPN Client File Permission privilege escalationVPN ClientNot DefinedNot DefinedCVE-2019-17388
2019-12-056.56.5Aviatrix VPN Client AVPNC_RP Service Code ExecutionVPN ClientNot DefinedNot DefinedCVE-2019-17387
2019-09-207.37.0Forcepoint VPN Client Unquoted Search Path privilege escalationVPN ClientNot DefinedOfficial FixCVE-2019-6145
2019-09-104.74.5OpenSSL Bleichenbacher weak encryptionOpenSSLNot DefinedOfficial FixCVE-2019-1563

Interested in the pricing of exploits?

See the underground prices here!