CVE-2020-36161

Опубликовано: 06 янв. 2021

Источник: nvd

CVSS3: 8.8

CVSS2: 7.2

EPSS Низкий

Описание

An issue was discovered in Veritas APTARE 10.4 before 10.4P9 and 10.5 before 10.5P3. By default, on Windows systems, users can create directories under C:. A low privileged user can create a directory at the configuration file locations. When the Windows system restarts, a malicious OpenSSL engine could exploit arbitrary code execution as SYSTEM. This gives the attacker administrator access on the system, allowing the attacker (by default) to access all data, access all installed applications, etc.

Ссылки

https://www.veritas.com/content/support/en_US/security/VTS20-009
Vendor Advisory
https://www.veritas.com/content/support/en_US/security/VTS20-009
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:veritas:aptare_it_analytics:10.4.00:-:*:*:*:*:*:*

cpe:2.3:a:veritas:aptare_it_analytics:10.4.00:patch1:*:*:*:*:*:*

cpe:2.3:a:veritas:aptare_it_analytics:10.4.00:patch2:*:*:*:*:*:*

cpe:2.3:a:veritas:aptare_it_analytics:10.4.00:patch3:*:*:*:*:*:*

cpe:2.3:a:veritas:aptare_it_analytics:10.4.00:patch4:*:*:*:*:*:*

cpe:2.3:a:veritas:aptare_it_analytics:10.4.00:patch5:*:*:*:*:*:*

cpe:2.3:a:veritas:aptare_it_analytics:10.4.00:patch6:*:*:*:*:*:*

cpe:2.3:a:veritas:aptare_it_analytics:10.4.00:patch7:*:*:*:*:*:*

cpe:2.3:a:veritas:aptare_it_analytics:10.4.00:patch8:*:*:*:*:*:*

cpe:2.3:a:veritas:aptare_it_analytics:10.5.00:-:*:*:*:*:*:*

cpe:2.3:a:veritas:aptare_it_analytics:10.5.00:patch1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 15%

0.00049

Низкий

8.8 High

CVSS3

7.2 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-qmv6-2p8v-6766

github

больше 3 лет назад

An issue was discovered in Veritas APTARE 10.4 before 10.4P9 and 10.5 before 10.5P3. By default, on Windows systems, users can create directories under C:\. A low privileged user can create a directory at the configuration file locations. When the Windows system restarts, a malicious OpenSSL engine could exploit arbitrary code execution as SYSTEM. This gives the attacker administrator access on the system, allowing the attacker (by default) to access all data, access all installed applications, etc.