PT-2020-13126 · Avira · Avira Software Updater

Published

2020-05-05

Updated

2021-07-21

CVE-2020-12463

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Avira Software Updater versions prior to 2.0.6.27476

Description The issue arises from the improper handling of file hard links, leading to an elevation of privilege. This allows local users to take control of arbitrary files.

Recommendations For versions prior to 2.0.6.27476, update to version 2.0.6.27476 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-12463

Affected Products

Avira Software Updater

PT-2020-13126 · Avira · Avira Software Updater

CVE-2020-12463

Related Identifiers

Affected Products

References · 3