CVE-2020-23740

HIGH

DriverGenius 9.61.5480.28 - Privilege Escalation

Title source: llm
STIX 2.1

Description

In DriverGenius 9.61.5480.28 there is a local privilege escalation vulnerability in the driver wizard, attackers can use constructed programs to increase user privileges.

References (4)

Core 4
Core References
Product x_refsource_misc
http://www.drivergenius.com/
Broken Link, Third Party Advisory x_refsource_misc
https://github.com/y5s5k5/POCtemp8
Broken Link, Third Party Advisory x_refsource_misc
https://github.com/y5s5k5/CVE-2020-23740
Third Party Advisory x_refsource_misc
https://www.cnvd.org.cn/flaw/show/2438470

Scores

CVSS v3 7.8
EPSS 0.0033
EPSS Percentile 25.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-862
Status published
Products (1)
drivergenius/drivergenius 9.61.5480.28
Published Dec 03, 2020
Tracked Since Feb 18, 2026