CVE-2020-13532

Name of the Vulnerable Software and Affected Versions Dream Report version 5 R20-2

Description A privilege escalation issue exists, allowing attackers to replace the Syncfusion Dashboard Service service binary and escalate privileges to NT SYSTEM. This can be triggered by providing a malicious file.

Recommendations For Dream Report version 5 R20-2, consider restricting access to the Syncfusion Dashboard Service to minimize the risk of exploitation. Additionally, monitor the service binary for any unauthorized changes. At the moment, there is no information about a newer version that contains a fix for this vulnerability.