CVE-2020-27643
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
The %PROGRAMDATA%\1E\Client directory in 1E Client 5.0.0.745 and 4.1.0.267 allows remote authenticated users and local users to create and modify files in protected directories (where they would not normally have access to create or modify files) via the creation of a junction point to a system directory. This leads to partial privilege escalation.
El directorio %PROGRAMDATA%\1E\Client en 1E Client versiones 5.0.0.745 y 4.1.0.267, permite a los usuarios autenticados remotos y a los usuarios locales crear y modificar archivos en directorios protegidos (donde normalmente no tendrían acceso para crear o modificar archivos) mediante la creación de un punto de unión en un directorio del sistema. Esto conduce a una escalada parcial de privilegios
CVSS Scores
SSVC
- Decision:-
Timeline
- 2020-10-22 CVE Reserved
- 2020-12-29 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-59: Improper Link Resolution Before File Access ('Link Following')
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| 1e Search vendor "1e" | Client Search vendor "1e" for product "Client" | 4.1.0.267 Search vendor "1e" for product "Client" and version "4.1.0.267" | windows |
Affected
| ||||||
| 1e Search vendor "1e" | Client Search vendor "1e" for product "Client" | 5.0.0.745 Search vendor "1e" for product "Client" and version "5.0.0.745" | windows |
Affected
| ||||||