exploitDog

CVE-2020-36992

Опубликовано: 28 янв. 2026

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

Nord VPN 6.31.13.0 contains an unquoted service path vulnerability in its nordvpn-service that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted binary path during system startup or reboot to potentially run malicious code with LocalSystem permissions.

Ссылки

EPSS

Процентиль: 1%

0.00012

Низкий

7.8 High

CVSS3

Дефекты

CWE-428

Связанные уязвимости

CVE-2020-36992

CVSS3: 7.8

debian

10 дней назад

Nord VPN 6.31.13.0 contains an unquoted service path vulnerability in ...

GHSA-xrrp-v29c-5f2g

CVSS3: 7.8

github

10 дней назад

Nord VPN 6.31.13.0 contains an unquoted service path vulnerability in its nordvpn-service that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted binary path during system startup or reboot to potentially run malicious code with LocalSystem permissions.

EPSS

Процентиль: 1%

0.00012

Низкий

7.8 High

CVSS3

Дефекты

CWE-428