CVE-2020-17365

EPSS 0.02% · P6 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-17365

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Improper directory permissions in the Hotspot Shield VPN client software for Windows 10.3.0 and earlier may allow an authorized user to potentially enable escalation of privilege via local access. The vulnerability allows a local user to corrupt system files: a local user can create a specially crafted symbolic link to a critical file on the system and overwrite it with privileges of the application.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Pango Hotspot Shield VPN 客户端安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Pango Hotspot Shield是美国Pango公司的一套VPN（虚拟私人网络）代理软件。 Hotspot Shield VPN客户端软件10.3.0及之前版本在Windows中存在安全漏洞，该漏洞源于目录权限不正确，该漏洞允许攻击者利用本地用户破坏系统文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-17365

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-17365

请登录查看更多情报信息。

https://www.pango.co/sec31944/x_refsource_MISC
https://cymptom.com/cve-2020-17365-hotspot-shield-vpn-new-privilege-escalation-vulnerability/2020/10/x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-17365

Same Patch Batch · n/a · 2020-09-24 · 32 CVEs total

CVE-2020-12282		iSmartgate PRO 跨站请求伪造漏洞
CVE-2020-15843		ActFax 安全漏洞
CVE-2020-13991		JerryScript 安全漏洞
CVE-2020-15851		Nakivo Backup 和 Replication Transporter 访问控制错误漏洞
CVE-2020-15850		Linux Nakivo Backup 和 Replication Director 安全漏洞
CVE-2016-11086		Ruby auth-ruby gem 信任管理问题漏洞
CVE-2020-15930		Joplin desktop 跨站脚本漏洞
CVE-2020-19447		Joomla jdownloads组件 SQL注入漏洞
CVE-2020-13119		ismartgate PRO 安全漏洞
CVE-2020-12843		ismartgate PRO 代码问题漏洞
CVE-2020-12838		ismartgate PRO 代码注入漏洞
CVE-2020-12842		ismartgate PRO 代码注入漏洞
CVE-2020-12839		ismartgate PRO 代码注入漏洞
CVE-2020-12837		ismartgate PRO 代码问题漏洞
CVE-2020-12840		ismartgate PRO 跨站请求伪造漏洞
CVE-2020-12841		ismartgate PRO 跨站请求伪造漏洞
CVE-2015-4719		Pexip Infinity 安全漏洞
CVE-2020-12281		iSmartGate PRO 跨站请求伪造漏洞
CVE-2020-12280		iSmartgate PRO 跨站请求伪造漏洞
CVE-2020-15840		Liferay Portal和Liferay DXP 安全漏洞

Showing top 20 of 32 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-17365

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-17365

I. Basic Information for CVE-2020-17365

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-17365

III. Intelligence Information for CVE-2020-17365

Same Patch Batch · n/a · 2020-09-24 · 32 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-17365

Leave a comment