CVE-2019-12808

  • Published Date: Tue 13 Aug 2019
  • Last Modified Date: Mon 19 Aug 2019

ALTOOLS update service 18.1 and earlier versions contains a local privilege escalation vulnerability due to insecure permission. An attacker can overwrite an executable that is launched as a service to exploit this vulnerability and execute arbitrary code with system privileges.

Impact

Severity: HIGH
Exploitability Score: 3.9
Impact Score: 10.0
Attack Vector (AV): LOCAL
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
Availability (A): COMPLETE

References (Advisories, Solutions, and Tools):



Note: This page is generated by our securitybot and has not been checked for errors. Feed Source: NVD