CVE-2008-2400 — Stunnel vulnerability

CWE-2644 documents4 sources

Severity

7.2HIGHNVD

EPSS

0.1%

top 84.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Stunnel

Timeline

PublishedMay 22

Latest updateMay 1

Description

Unspecified vulnerability in stunnel before 4.23, when running as a service on Windows, allows local users to gain privileges via unknown attack vectors.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDstunnel/stunnel60 versions+59

🔴Vulnerability Details

GHSA

GHSA-r8p5-h86h-72h9: Unspecified vulnerability in stunnel before 4↗2022-05-01

▶

CVEList

CVE-2008-2400: Unspecified vulnerability in stunnel before 4↗2008-05-22

▶

📋Vendor Advisories

Debian

CVE-2008-2400: stunnel4 - Unspecified vulnerability in stunnel before 4.23, when running as a service on W...↗2008

▶