| |
Vulnerability CVE-2020-1461
Published: 2020-07-14 Modified: 2020-07-15
Description: |
An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'. |
Type:
CWE-269 (Improper Privilege Management)
CVSS2 => (AV:L/AC:L/Au:N/C:N/I:P/A:P)
CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
3.6/10 |
4.9/10 |
3.9/10 |
Exploit range |
Attack complexity |
Authentication |
Local |
Low |
No required |
Confidentiality impact |
Integrity impact |
Availability impact |
None |
Partial |
Partial |
References: |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1461
|
|
|
closedb();
?>
Copyright 2024, cxsecurity.com
|
|
|