CVE-2020-25045

Summary

Installers of Kaspersky Security Center and Kaspersky Security Center Web Console prior to 12 & prior to 12 Patch A were vulnerable to a DLL hijacking attack that allowed an attacker to elevate privileges in the system.

Affected Software

VendorProductVersion RangeStatus
n/aKaspersky Security Center & Kaspersky Security Center Web Consoleprior to 12 & prior to 12 Patch Aaffected

Weaknesses

  • Local Privilege Escalation (LPE)

ADP Enrichment

CVE Program Container

Additional References

References