Security Advisory

CVE-2022-24141

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-06 12:41:49

Last updated 2024-08-03 04:07:01

Assigner mitre

State PUBLISHED

Description

The iTopVPNmini.exe component of iTop VPN 3.2 will try to connect to datastate_iTopVPN_Pipe_Server on a loop. An attacker that opened a named pipe with the same name can use it to gain the token of another user by listening for connections and abusing ImpersonateNamedPipeClient().

← Browse all CVEs View on cve.org ↗