PT-2022-8636 · Unknown · Eagleget Downloader

Published

2022-06-24

Updated

2022-07-25

CVE-2020-21046

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions EagleGet Downloader version 2.1.5.20 Stable

Description A local privilege escalation issue was identified within the luminati net updater win eagleget com service. This issue allows an authenticated non-administrative user to escalate their privilege and conduct code execution as a SYSTEM privilege.

Recommendations For EagleGet Downloader version 2.1.5.20 Stable, consider disabling the luminati net updater win eagleget com service as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2020-21046

Affected Products

Eagleget Downloader

PT-2022-8636 · Unknown · Eagleget Downloader

CVE-2020-21046

Weakness Enumeration

Related Identifiers

Affected Products

References · 7