CVE-2020-6013

HIGH

ZoneAlarm Firewall and Antivirus <15.8.109.18436 - Privilege Escala...

Title source: llm
STIX 2.1

Description

ZoneAlarm Firewall and Antivirus products before version 15.8.109.18436 allow an attacker who already has access to the system to execute code at elevated privileges through a combination of file permission manipulation and exploitation of Windows CVE-2020-00896 on unpatched systems.

References (1)

Core 1
Core References
Release Notes, Vendor Advisory x_refsource_misc
https://www.zonealarm.com/software/extreme-security/release-history

Scores

CVSS v3 8.8
EPSS 0.0155
EPSS Percentile 72.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-269 CWE-65
Status published
Products (1)
checkpoint/zonealarm_extreme_security < 15.8.109.18436
Published Jul 06, 2020
Tracked Since Feb 18, 2026