mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-29 16:29:28 +02:00
0xMarcio
1.0 KiB
1.0 KiB
CVE-2020-7479
%20(IGSS%20Version%20prior%20to%2014.0.0.20009)&color=blue)
%20(Versions%2014%20and%20prior%20using%20the%20service%3A%20IGSSupdate)%20&color=brightgreen)
Description
A CWE-306: Missing Authentication for Critical Function vulnerability exists in IGSS (Versions 14 and prior using the service: IGSSupdate), which could allow a local user to execute processes that otherwise require escalation privileges when sending local network commands to the IGSS Update Service.
POC
Reference
No PoCs from references.