CVE-2020-22061

EUVD-2020-14827
SUPERAntispyware v8.0.0.1050 was discovered to contain an issue in the component saskutil64.sys. This issue allows attackers to arbitrarily write data to the device via IOCTL 0x9C402140.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
Affected Products (NVD)
VendorProductVersion
superantispywaresuperantispyware
8.0.0.1050
superantispywaresuperantispyware
8.0.0.1050
𝑥
= Vulnerable software versions
References
https://gist.github.com/hfiref0x/7e66d943984cceac60eb812ac1bf8208
https://gist.github.com/hfiref0x/7e66d943984cceac60eb812ac1bf8208