Lucene search
AdobeCVELIST:CVE-2020-9668HistoryJul 14, 2020 - 12:00 a.m.
CVE-2020-9668 AGSService program mishandling symbolic links
2020-07-1400:00:00
CWE-284
adobe
www.cve.org
2
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
38.0%
Adobe Genuine Service version 6.6 (and earlier) is affected by an Improper Access control vulnerability when handling symbolic links. An unauthenticated attacker could exploit this to elevate privileges in the context of the current user.
CNA Affected
[
{
"product": "GoCart",
"vendor": "Adobe",
"versions": [
{
"lessThanOrEqual": "6.6",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThanOrEqual": "None",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2020-9668
2021-04-16 18:15:13
prion
prion
Improper access control
2021-04-16 18:15:00
nvd
nvd
CVE-2020-9668
2021-04-16 18:15:13
adobe
adobe
APSB20-42 Security update available for Adobe Genuine Service
2020-07-14 00:00:00
threatpost
threatpost
Adobe Discloses Critical Code-Execution Bugs in July Update
2020-07-14 17:02:03
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
38.0%
Related for CVELIST:CVE-2020-9668