Description
Cellebrite UFED 5.0 to 7.5.0.845 implements local operating system policies that can be circumvented to obtain a command prompt via the Windows file dialog that is reachable via the Certificate-Based Authentication option of the Wireless Network Connection screen.
References (5)
Core 5
Core References
Third Party Advisory x_refsource_misc
https://twitter.com/thatguylevel
Third Party Advisory x_refsource_misc
https://korelogic.com/advisories.html
Third Party Advisory x_refsource_misc
https://github.com/thatguylevel
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/157715/Cellebrite-UFED-7.5.0.845-Desktop-Escape-Privilege-Escalation.html
Exploit, Third Party Advisory x_refsource_misc
https://korelogic.com/Resources/Advisories/KL-001-2020-002.txt
Scores
CVSS v3
7.8
EPSS
0.0034
EPSS Percentile
26.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-269
Status
published
Products (1)
sun-denshi/universal_forensic_extraction_device_firmware
5.0 - 7.5.0.845
Published
May 15, 2020
Tracked Since
Feb 18, 2026