exploitDog

CVE-2018-20621

Опубликовано: 13 мар. 2019

Источник: nvd

CVSS3: 7.8

CVSS2: 7.2

EPSS Низкий

Описание

An issue was discovered in Microvirt MEmu 6.0.6. The MemuService.exe service binary is vulnerable to local privilege escalation through binary planting due to insecure permissions set at install time. This allows code to be run as NT AUTHORITY/SYSTEM.

Ссылки

https://github.com/RhinoSecurityLabs/CVEs/tree/master/CVE-2018-20621
Exploit
Third Party Advisory
https://github.com/RhinoSecurityLabs/CVEs/tree/master/CVE-2018-20621
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microvirt:memu:6.0.6:*:*:*:*:*:*:*

EPSS

Процентиль: 68%

0.00555

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-732

Связанные уязвимости

GHSA-9vf8-28w9-2355

CVSS3: 7.8

github

больше 3 лет назад

An issue was discovered in Microvirt MEmu 6.0.6. The MemuService.exe service binary is vulnerable to local privilege escalation through binary planting due to insecure permissions set at install time. This allows code to be run as NT AUTHORITY/SYSTEM.

EPSS

Процентиль: 68%

0.00555

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-732