Main Vulnerability Database Vulnerabilities #VU26735

#VU26735 External Control of File Name or Path in Secdo - CVE-2020-1984

Published: April 9, 2020

Vulnerability identifier: #VU26735

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2020-1984

CWE-ID: CWE-73

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Secdo

Software vendor:
Palo Alto Networks, Inc.

Description

The vulnerability allows a local user to escalate privileges on the target system.

Thevulnerability exists due to the affected software tries to execute a script at a hardcoded path if present. A local user with "create folders or append data" access to the root of the OS disk (C:\) can gain system privileges if the path does not already exist or is writable.

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

External links

https://security.paloaltonetworks.com/CVE-2020-1984