Vulnerabilities > Avast > Secureline VPN

DATE CVE VULNERABILITY TITLE RISK
2020-09-13 CVE-2020-25289 Link Following vulnerability in Avast Secureline VPN
The VPN service in AVAST SecureLine before 5.6.4982.470 allows local users to write to arbitrary files via an Object Manager symbolic link from the log directory (which has weak permissions).
local
low complexity
avast CWE-59
5.5