CVE-2020-23740

In DriverGenius 9.61.5480.28 there is a local privilege escalation vulnerability in the driver wizard, attackers can use constructed programs to increase user privileges.
References
Link Resource
http://www.drivergenius.com/ Product
https://github.com/y5s5k5/CVE-2020-23740 Broken Link Third Party Advisory
https://github.com/y5s5k5/POCtemp8 Broken Link Third Party Advisory
https://www.cnvd.org.cn/flaw/show/2438470 Third Party Advisory
http://www.drivergenius.com/ Product
https://github.com/y5s5k5/CVE-2020-23740 Broken Link Third Party Advisory
https://github.com/y5s5k5/POCtemp8 Broken Link Third Party Advisory
https://www.cnvd.org.cn/flaw/show/2438470 Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:drivergenius:drivergenius:9.61.5480.28:*:*:*:*:*:*:*

History

21 Nov 2024, 05:14

Type Values Removed Values Added
References () http://www.drivergenius.com/ - Product () http://www.drivergenius.com/ - Product
References () https://github.com/y5s5k5/CVE-2020-23740 - Broken Link, Third Party Advisory () https://github.com/y5s5k5/CVE-2020-23740 - Broken Link, Third Party Advisory
References () https://github.com/y5s5k5/POCtemp8 - Broken Link, Third Party Advisory () https://github.com/y5s5k5/POCtemp8 - Broken Link, Third Party Advisory
References () https://www.cnvd.org.cn/flaw/show/2438470 - Third Party Advisory () https://www.cnvd.org.cn/flaw/show/2438470 - Third Party Advisory

Information

Published : 2020-12-03 19:15

Updated : 2024-11-21 05:14


NVD link : CVE-2020-23740

Mitre link : CVE-2020-23740

CVE.ORG link : CVE-2020-23740


JSON object : View

Products Affected

drivergenius

  • drivergenius
CWE
CWE-862

Missing Authorization