Home / Early Warning / Vulnerabilidades / CVE-2020-13417

CVE-2020-13417

Type: 
Unavailable / Other
Severity: 
High
Publication date: 
05/22/2020
Last modified: 
05/26/2020
Description
An Elevation of Privilege issue was discovered in Aviatrix VPN Client before 2.10.7, because of an incomplete fix for CVE-2020-7224. This affects Linux, macOS, and Windows installations for certain OpenSSL parameters.
Impact
Access Vector: Through network
Access Complexity: Low
Authentication: Not required to exploit
Impact Type: Partially affects on system integrity + Partially affects on system confidentiality + Partially affects on system availability
Vulnerable software and versions
  • cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os:-:*:*:*:*:*:*:*
  • cpe:2.3:a:aviatrix:gateway:*:*:*:*:*:*:*:*
  • cpe:2.3:a:aviatrix:controller:*:*:*:*:*:*:*:*
To consult the complete list of products and versions see this page
Explanation of fields