CVE-2020-27708

A vulnerability exists in the Origin Client that could allow a non-Administrative user to elevate their access to either Administrator or System. Once the user has obtained elevated access, they may be able to take control of the system and perform actions otherwise reserved for high privileged users or system Administrators.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EACNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
VendorProductVersion
eaorigin
𝑥
≤ 10.5.86
eaorigin
𝑥
≤ 10.5.86
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.ea.com/security/news/easec-2020-002-elevation-of-privilege-vulnerability-in-origin-client
https://www.ea.com/security/news/easec-2020-002-elevation-of-privilege-vulnerability-in-origin-client