CVE-2020-23740

In DriverGenius 9.61.5480.28 there is a local privilege escalation vulnerability in the driver wizard, attackers can use constructed programs to increase user privileges.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
VendorProductVersion
drivergeniusdrivergenius
9.61.5480.28
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.drivergenius.com/
https://github.com/y5s5k5/CVE-2020-23740
https://github.com/y5s5k5/POCtemp8
https://www.cnvd.org.cn/flaw/show/2438470
http://www.drivergenius.com/
https://github.com/y5s5k5/CVE-2020-23740
https://github.com/y5s5k5/POCtemp8
https://www.cnvd.org.cn/flaw/show/2438470