Vulnerability CVE-2020-23864


Published: 2020-10-27

Description:
An issue exits in IOBit Malware Fighter version 8.0.2.547. Local escalation of privileges is possible by dropping a malicious DLL file into the WindowsApps folder.

Type:

NVD-CWE-noinfo

CVSS2 => (AV:L/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.9/10
10/10
3.4/10
Exploit range
Attack complexity
Authentication
Local
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Iobit -> Malware fighter 

 References:
http://daniels-it-blog.blogspot.com/2020/07/iobit-malware-fighter-arbitrary-code.html

Copyright 2021, cxsecurity.com

 

Back to Top