CVE-2020-7479 - CERT CVE
ID CVE-2020-7479
Sažetak A CWE-306: Missing Authentication for Critical Function vulnerability exists in IGSS (Versions 14 and prior using the service: IGSSupdate), which could allow a local user to execute processes that otherwise require escalation privileges when sending local network commands to the IGSS Update Service.
Reference
CVSS
Base: 4.6
Impact: 6.4
Exploitability:3.9
Pristup
VektorSloženostAutentikacija
LOCAL LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL PARTIAL PARTIAL
CVSS vektor AV:L/AC:L/Au:N/C:P/I:P/A:P
Zadnje važnije ažuriranje 06-10-2022 - 19:37
Objavljeno 23-03-2020 - 20:15