CVE-2020-23968

HIGH

Ilex International Sign&go Workstation Security Suite 7.1 - Privilege Escalation via Symlink Attack

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-23968. PoCs published by ricardojba.

AI-analyzed exploit summary This repository contains a C++ exploit for CVE-2020-23968, targeting ILEX SignGo for local privilege escalation (LPE) via directory object manipulation and symbolic link attacks. The exploit leverages Windows API calls and NT functions to achieve elevation of privileges.

Description

Ilex International Sign&go Workstation Security Suite 7.1 allows elevation of privileges via a symlink attack on ProgramData\Ilex\S&G\Logs\000-sngWSService1.log.

Exploits (1)

nomisec WORKING POC 1 stars
by ricardojba · poc
https://github.com/ricardojba/CVE-2020-23968-ILEX-SignGo-EoP

This repository contains a C++ exploit for CVE-2020-23968, targeting ILEX SignGo for local privilege escalation (LPE) via directory object manipulation and symbolic link attacks. The exploit leverages Windows API calls and NT functions to achieve elevation of privileges.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: ILEX SignGo (version not explicitly specified)
Auth required
Prerequisites: Local access to the target system · ILEX SignGo installed · Administrative or SYSTEM privileges to create directory objects
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Vendor Advisory x_refsource_misc
http://ilex.com
Third Party Advisory x_refsource_misc
http://signgo.com
Exploit, Third Party Advisory x_refsource_misc
https://ricardojba.github.io/CVE-Pending-ILEX-SignGo-EoP/

Scores

CVSS v3 7.8
EPSS 0.0089
EPSS Percentile 54.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-59
Status published
Products (1)
ilex/international_sign\&go 7.1
Published Nov 10, 2020
Tracked Since Feb 18, 2026