Lucene search

MitreCVE-2020-10962

HistoryAug 01, 2023 - 2:15 a.m.

CVE-2020-10962

2023-08-0102:15:09

mitre

web.nvd.nist.gov

cve-2020-10962

powershell

psappdeploytoolkit

access control

vulnerability

privilege escalation

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

High

EPSS

Percentile

9.0%

JSON

In PowerShell App Deployment Toolkit (aka PSAppDeployToolkit) through 3.8.0, an incorrect access control vulnerability in the default configuration may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected configurations

Nvd

Node

psappdeploytoolkitpowershell_app_deployment_toolkitRange≤3.8.0

VendorProductVersionCPE
psappdeploytoolkitpowershell_app_deployment_toolkit*cpe:2.3:a:psappdeploytoolkit:powershell_app_deployment_toolkit:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
psappdeploytoolkit	powershell_app_deployment_toolkit	*	cpe:2.3:a:psappdeploytoolkit:powershell_app_deployment_toolkit::::::::

References

discourse.psappdeploytoolkit.com/t/psappdeploytoolkit-3-8-2/2555

github.com/PSAppDeployToolkit/PSAppDeployToolkit/releases

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for CVE-2020-10962