CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-25744

SaferVPN before 5.0.3.3 on Windows could allow low-privileged users to create or overwrite arbitrary files, which could cause a denial of service (DoS) condition, because a symlink from %LOCALAPPDATA%\SaferVPN\Log is followed.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.8%

CVSS Severity

CVSS v3 Score 8.1

CVSS v2 Score 5.5

References

https://medium.com/%40thebinary0x1/safervpn-for-windows-arbitrary-file-overwrite-dos-bdc88fdb5ead
https://www.youtube.com/watch?v=0QdRJdA_aos
https://medium.com/%40thebinary0x1/safervpn-for-windows-arbitrary-file-overwrite-dos-bdc88fdb5ead
https://www.youtube.com/watch?v=0QdRJdA_aos

Products affected by CVE-2020-25744

Safervpn » Safervpn » Version: N/A

cpe:2.3:a:safervpn:safervpn:-
Safervpn » Safervpn » Version: 4.2.5

cpe:2.3:a:safervpn:safervpn:4.2.5
Safervpn » Safervpn » Version: 5.0.2.20

cpe:2.3:a:safervpn:safervpn:5.0.2.20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-25744

Products

Pricing

Contact Us