CVE-2020-11474
HIGHNCP Secure Enterprise Client < 10.15 - Symbolic Link Attack via Support Assistant
Title source: llmDescription
NCP Secure Enterprise Client before 10.15 r47589 allows a symbolic link attack on enumusb.reg via Support Assistant.
References (2)
Core 2
Core References
Third Party Advisory x_refsource_misc
https://herolab.usd.de/security-advisories/
Exploit, Third Party Advisory x_refsource_misc
https://herolab.usd.de/security-advisories/usd-2020-0038/
Scores
CVSS v3
7.8
EPSS
0.0053
EPSS Percentile
40.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-59
Status
published
Products (1)
ncp-e/secure_enterprise_client
< 10.15
Published
Jul 28, 2020
Tracked Since
Feb 18, 2026