CVE-2020-21046
HIGHEagleGet < 2.1.6.40 - Local Privilege Escalation via luminati_net_updater_win_eagleget_com Service
Title source: llmDescription
A local privilege escalation vulnerability was identified within the "luminati_net_updater_win_eagleget_com" service in EagleGet Downloader version 2.1.5.20 Stable. This issue allows authenticated non-administrative user to escalate their privilege and conduct code execution as a SYSTEM privilege.
References (2)
Core 2
Core References
Various Sources x_refsource_misc
https://medium.com/%40n1pwn/local-privilege-escalation-in-eagleget-1fde79fe47c0
Broken Link x_refsource_misc
http://eagleget.com
Scores
CVSS v3
7.8
EPSS
0.0040
EPSS Percentile
31.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-269
Status
published
Products (1)
softonic/eagleget
< 2.1.6.40
Published
Jun 24, 2022
Tracked Since
Feb 18, 2026