PT-2020-15581 · Drivergenius · Drivergenius

Published

2020-12-03

Updated

2021-07-21

CVE-2020-23740

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions DriverGenius version 9.61.5480.28

Description The issue is a local privilege escalation vulnerability in the driver wizard of DriverGenius. Attackers can exploit this by using specially constructed programs to increase user privileges.

Recommendations For DriverGenius version 9.61.5480.28, consider disabling the driver wizard feature until a patch is available to prevent potential exploitation.

Exploit

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2020-23740

Affected Products

Drivergenius

PT-2020-15581 · Drivergenius · Drivergenius

CVE-2020-23740

Weakness Enumeration

Related Identifiers

Affected Products

References · 7