CVE-2020-12798

{"id": "CVE-2020-12798", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2020-05-15T18:15:13.587", "references": [{"url": "http://packetstormsecurity.com/files/157715/Cellebrite-UFED-7.5.0.845-Desktop-Escape-Privilege-Escalation.html", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "https://github.com/thatguylevel", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://korelogic.com/Resources/Advisories/KL-001-2020-002.txt", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://korelogic.com/advisories.html", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://twitter.com/thatguylevel", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "http://packetstormsecurity.com/files/157715/Cellebrite-UFED-7.5.0.845-Desktop-Escape-Privilege-Escalation.html", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/thatguylevel", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://korelogic.com/Resources/Advisories/KL-001-2020-002.txt", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://korelogic.com/advisories.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://twitter.com/thatguylevel", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-269"}]}], "descriptions": [{"lang": "en", "value": "Cellebrite UFED 5.0 to 7.5.0.845 implements local operating system policies that can be circumvented to obtain a command prompt via the Windows file dialog that is reachable via the Certificate-Based Authentication option of the Wireless Network Connection screen."}, {"lang": "es", "value": "Cellebrite UFED versiones 5.0 hasta 7.5.0.845, implementa pol\u00edticas de sistema operativo local que pueden ser evitadas para obtener un s\u00edmbolo del sistema por medio del cuadro de di\u00e1logo de archivos de Windows que es accesible mediante la opci\u00f3n Certificate-Based Authentication de la pantalla Wireless Network Connection."}], "lastModified": "2024-11-21T05:00:18.697", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sun-denshi:universal_forensic_extraction_device_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F625B88-3D17-4C2C-85D9-33CF348BD411", "versionEndIncluding": "7.5.0.845", "versionStartIncluding": "5.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sun-denshi:universal_forensic_extraction_device_ruggedized_panasonic_laptop:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "23F4A774-FA8E-4A70-AD9D-45C53774309E"}, {"criteria": "cpe:2.3:h:sun-denshi:universal_forensic_extraction_device_touch_2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "80AF0BD1-41BB-41AB-91A3-EB8F011BD4EC"}, {"criteria": "cpe:2.3:h:sun-denshi:universal_forensic_extraction_device_touch_2_ruggedized:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C543D7A3-5E00-4F5B-A397-C384E8505956"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}