Vulnerability CVE-2020-25044


Published: 2020-09-02   Modified: 2020-09-03

Description:
Kaspersky Virus Removal Tool (KVRT) prior to 15.0.23.0 was vulnerable to arbitrary file corruption that could provide an attacker with the opportunity to eliminate content of any file in the system.

Type:

NVD-CWE-noinfo

CVSS2 => (AV:L/AC:L/Au:N/C:N/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
3.6/10
4.9/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
Partial
Affected software
Kaspersky -> Virus removal tool 

 References:
https://support.kaspersky.com/general/vulnerability.aspx?el=12430#290720

Copyright 2021, cxsecurity.com

 

Back to Top