CVE-2020-1985
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Incorrect Default Permissions on C:\Programdata\Secdo\Logs folder in Secdo allows local authenticated users to overwrite system files and gain escalated privileges. This issue affects all versions Secdo for Windows.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Secdo | Secdo | all versions | affected |
Weaknesses
- CWE-276: CWE-276 Incorrect Default Permissions
Workarounds
Change permission on C:\Programdata\Secdo\Logs to not allow unprivileged users access.
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.