VeePN ଯେପର୍ଯ୍ୟନ୍ତ 1.6.2 AVService avservice.exe ବିସ୍ତାରିତ ଅଧିକାର

Dogoggorri kan akka ସମସ୍ୟାଜନକ jedhamuun ramadame VeePN ଯେପର୍ଯ୍ୟନ୍ତ 1.6.2 keessatti argameera. Miidhamni argame is hojii hin beekamne faayilii C:\Program Files (x86)\VeePN\avservice\avservice.exe keessa kutaa AVService keessa. Wanti jijjiirame gara ବିସ୍ତାରିତ ଅଧିକାର geessa. Rakkoo ibsuuf CWE yoo fayyadamte gara CWE-428 si geessa. Odeeffannoon kun yeroo 10/26/2025 maxxanfameera. Odeeffannoon kun buufachuuf github.com irratti argama. Dogoggorri kun CVE-2025-12286 jedhamee waamama. Weerara sun naannoo keessaatti qofa raawwatamuu qaba. Ibsa teeknikaa ni jira. Meeshaa balaa kana fayyadamuuf hin jirre. Ammas, gatii exploit might be approx. USD $0-$5k yeroo ammaa irratti argamuu danda'a. ଅପରିଭାଷିତ ta’uu isaa ibsameera. Akka 0-daytti, gatiin isaa daldala dhoksaa keessatti $0-$5k akka ta'e tilmaamameera. If you want to get best quality of vulnerability data, you may have to visit VulDB.

3 ଆଡାପ୍ଟେସନ୍ · 82 ପଏଣ୍ଟ

ଫିଲ୍ଡସୃଷ୍ଟି ହୋଇଛି
10/26/2025 05:28 PM		ଅଦ୍ୟତନ 1/2
10/26/2025 05:29 PM		ଅଦ୍ୟତନ 2/2
10/27/2025 11:42 PM
cvss2_vuldb_auSSS
cvss2_vuldb_eNDNDND
cvss2_vuldb_rlNDNDND
cvss3_vuldb_eXXX
cvss3_vuldb_rlXXX
cvss4_vuldb_atNNN
cvss4_vuldb_scNNN
cvss4_vuldb_siNNN
cvss4_vuldb_saNNN
cvss4_vuldb_eXXX
cvss2_vuldb_basescore6.06.06.0
cvss2_vuldb_tempscore5.75.75.7
cvss3_vuldb_basescore7.07.07.0
cvss3_vuldb_tempscore6.86.86.8
cvss3_meta_basescore7.07.07.0
cvss3_meta_tempscore6.86.86.9
cvss4_vuldb_bscore7.37.37.3
cvss4_vuldb_btscore7.37.37.3
advisory_date1761429600 (10/26/2025)1761429600 (10/26/2025)1761429600 (10/26/2025)
price_0day$0-$5k$0-$5k$0-$5k
software_nameVeePNVeePNVeePN
software_version<=1.6.2<=1.6.2<=1.6.2
software_componentAVServiceAVServiceAVService
vulnerability_cweCWE-428 (ବିସ୍ତାରିତ ଅଧିକାର)CWE-428 (ବିସ୍ତାରିତ ଅଧିକାର)CWE-428 (ବିସ୍ତାରିତ ଅଧିକାର)
vulnerability_risk111
cvss3_vuldb_avLLL
cvss3_vuldb_acHHH
cvss3_vuldb_prLLL
cvss3_vuldb_uiNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cHHH
cvss3_vuldb_iHHH
cvss3_vuldb_aHHH
cvss3_vuldb_rcRRR
advisory_urlhttps://github.com/lakshayyverma/CVE-Discovery/blob/main/VeePn.mdhttps://github.com/lakshayyverma/CVE-Discovery/blob/main/VeePn.mdhttps://github.com/lakshayyverma/CVE-Discovery/blob/main/VeePn.md
source_cveCVE-2025-12286CVE-2025-12286CVE-2025-12286
cna_responsibleVulDBVulDBVulDB
response_summaryThe vendor was contacted early about this disclosure but did not respond in any way.The vendor was contacted early about this disclosure but did not respond in any way.The vendor was contacted early about this disclosure but did not respond in any way.
cvss2_vuldb_avLLL
cvss2_vuldb_acHHH
cvss2_vuldb_ciCCC
cvss2_vuldb_iiCCC
cvss2_vuldb_aiCCC
cvss2_vuldb_rcURURUR
cvss4_vuldb_avLLL
cvss4_vuldb_acHHH
cvss4_vuldb_prLLL
cvss4_vuldb_uiNNN
cvss4_vuldb_vcHHH
cvss4_vuldb_viHHH
cvss4_vuldb_vaHHH
software_fileC:\Program Files (x86)\VeePN\avservice\avservice.exeC:\Program Files (x86)\VeePN\avservice\avservice.exe
cve_nvd_summaryA weakness has been identified in VeePN up to 1.6.2. This affects an unknown function of the file C:\Program Files (x86)\VeePN\avservice\avservice.exe of the component AVService. This manipulation causes unquoted search path. The attack requires local access. A high degree of complexity is needed for the attack. The exploitability is reported as difficult. The vendor was contacted early about this disclosure but did not respond in any way.
cvss4_cna_avL
cvss4_cna_acH
cvss4_cna_atN
cvss4_cna_prL
cvss4_cna_uiN
cvss4_cna_vcH
cvss4_cna_viH
cvss4_cna_vaH
cvss4_cna_scN
cvss4_cna_siN
cvss4_cna_saN
cvss4_cna_bscore7.3
cvss3_cna_avL
cvss3_cna_acH
cvss3_cna_prL
cvss3_cna_uiN
cvss3_cna_sU
cvss3_cna_cH
cvss3_cna_iH
cvss3_cna_aH
cvss3_cna_basescore7
cvss2_cna_avL
cvss2_cna_acH
cvss2_cna_auS
cvss2_cna_ciC
cvss2_cna_iiC
cvss2_cna_aiC
cvss2_cna_basescore6

ପଛକୁସମୀକ୍ଷାଆହୁରି ଦୂରରେ

Do you want to use VulDB in your project?

Use the official API to access entries easily!