Security Advisory

CVE-2020-1984

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-08 18:41:58

Last updated 2024-09-17 04:20:08

Assigner palo_alto

State PUBLISHED

Description

Secdo tries to execute a script at a hardcoded path if present, which allows a local authenticated user with create folders or append data access to the root of the OS disk (C:) to gain system privileges if the path does not already exist or is writable. This issue affects all versions of Secdo for Windows.

← Browse all CVEs View on cve.org ↗