CVE-2020-10553

{"id": "CVE-2020-10553", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2021-02-05T20:15:12.827", "references": [{"url": "https://www.x41-dsec.de/lab/advisories/x41-2020-002-psyprax", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.x41-dsec.de/lab/advisories/x41-2020-002-psyprax", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-732"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in Psyprax before 3.2.2. The file %PROGRAMDATA%\\Psyprax32\\PPScreen.ini contains a hash for the lockscreen (aka screensaver) of the application. If that entry is removed, the lockscreen is no longer displayed and the app is no longer locked. All local users are able to modify that file."}, {"lang": "es", "value": "Se detect\u00f3 un problema en Psyprax versiones anteriores a 3.2.2. El archivo %PROGRAMDATA%\\Psyprax32\\PPScreen.ini contiene un hash para la pantalla de bloqueo (tambi\u00e9n se conoce como protector de pantalla) de la aplicaci\u00f3n. Si esa entrada es eliminada, la pantalla de bloqueo ya no es mostrada y la aplicaci\u00f3n ya no est\u00e1 bloqueada. Todos los usuarios locales pueden ser capaces de modificar ese archivo"}], "lastModified": "2024-11-21T04:55:34.227", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:psyprax:psyprax:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2BF504F8-37CA-41C2-8A4A-78CD57197D2C", "versionEndExcluding": "3.2.2"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}