Vulnerability Description
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally. The identifier VDB-252685 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Iobit | Itop Vpn | <= 4.0.0.1 |
Related Weaknesses (CWE)
References
- https://vuldb.com/?ctiid.252685Permissions RequiredThird Party AdvisoryVDB Entry
- https://vuldb.com/?id.252685Third Party AdvisoryVDB Entry
- https://www.youtube.com/watch?v=JdQMINPVJd8Broken Link
- https://vuldb.com/?ctiid.252685Permissions RequiredThird Party AdvisoryVDB Entry
- https://vuldb.com/?id.252685Third Party AdvisoryVDB Entry
- https://www.youtube.com/watch?v=JdQMINPVJd8Broken Link
FAQ
What is CVE-2024-1195?
CVE-2024-1195 is a vulnerability with a CVSS score of 5.5 (MEDIUM). A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL ...
How severe is CVE-2024-1195?
CVE-2024-1195 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-1195?
Check the references section above for vendor advisories and patch information. Affected products include: Iobit Itop Vpn.