Gryphon Tower Firmware
CVE-2021-20145
HIGH
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
Gryphon Tower routers contain an unprotected openvpn configuration file which can grant attackers access to the Gryphon homebound VPN network which exposes the LAN interfaces of other users' devices connected to the same service. An attacker could leverage this to make configuration changes to, or otherwise attack victims' devices as though they were on an adjacent network.
AnalysisAI
Gryphon Tower routers contain an unprotected openvpn configuration file which can grant attackers access to the Gryphon homebound VPN network which exposes the LAN interfaces of other users' devices. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Technical ContextAI
This vulnerability is classified as Improper Authentication (CWE-287), which allows attackers to bypass authentication mechanisms to gain unauthorized access. Gryphon Tower routers contain an unprotected openvpn configuration file which can grant attackers access to the Gryphon homebound VPN network which exposes the LAN interfaces of other users' devices connected to the same service. An attacker could leverage this to make configuration changes to, or otherwise attack victims' devices as though they were on an adjacent network. Affected products include: Gryphonconnect Gryphon Tower Firmware.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Implement multi-factor authentication, enforce strong password policies, use proven authentication frameworks.
More in Gryphon Tower Firmware
View allAn unauthenticated command injection vulnerability exists in the parameters of operation 49 in the controller_server ser
An unauthenticated command injection vulnerability exists in the parameters of operation 48 in the controller_server ser
An unauthenticated command injection vulnerability exists in the parameters of operation 41 in the controller_server ser
An unauthenticated command injection vulnerability exists in the parameters of operation 32 in the controller_server ser
An unauthenticated command injection vulnerability exists in the parameters of operation 10 in the controller_server ser
An unauthenticated command injection vulnerability exists in the parameters of operation 3 in the controller_server serv
An unauthenticated command injection vulnerability exists in multiple parameters in the Gryphon Tower router’s web inter
A reflected cross-site scripting vulnerability exists in the url parameter of the /cgi-bin/luci/site_access/ page on the
An unprotected ssh private key exists on the Gryphon devices which could be used to achieve root access to a server affi
Same weakness CWE-287 – Improper Authentication
View allSame technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today