PT-2020-13599 · Softperfect · Softperfect Ram Disk

Published

2020-08-04

Updated

2022-06-07

CVE-2020-13522

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SoftPerfect RAM Disk version 4.1

Description An arbitrary file delete issue exists due to a specially crafted I/O request packet (IRP) that can be sent by an attacker, allowing an unprivileged user to delete any file on the filesystem. This can be triggered by sending a malicious IRP.

Recommendations For SoftPerfect RAM Disk version 4.1, consider disabling the spvve.sys driver as a temporary workaround until a patch is available. Restrict access to the filesystem to minimize the risk of exploitation. Avoid using the vulnerable driver until the issue is resolved.

Exploit

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2020-13522

Affected Products

Softperfect Ram Disk

PT-2020-13599 · Softperfect · Softperfect Ram Disk

CVE-2020-13522

Weakness Enumeration

Related Identifiers

Affected Products

References · 5