CVE-2020-13431

CVE-2020-13431

EPSS 0.3%

I2P before 0.9.46 allows local users to gain privileges via a Trojan horse I2PSvc.exe file because of weak permissions on a certain %PROGRAMFILES% subdirectory.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://blog.blazeinfosec.com/security-advisory-i2p-for-windows-local-privilege-escalation/https://geti2p.net/en