admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2020/CVE-2020-88xx/CVE-2020-8884.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

141 lines
4.6 KiB
JSON
Raw Blame History

{
"id": "CVE-2020-8884",
"sourceIdentifier": "cve@mitre.org",
"published": "2021-01-06T14:15:13.920",
"lastModified": "2021-01-13T19:21:05.487",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "rcdsvc in the Proofpoint Insider Threat Management Windows Agent (formerly ObserveIT Windows Agent) before 7.9 allows remote authenticated users to execute arbitrary code as SYSTEM because of improper deserialization over named pipes."
},
{
"lang": "es",
"value": "rcdsvc en el Proofpoint Insider Threat Management Windows Agent (anteriormente ObserveIT Windows Agent) versiones anteriores a 7.9, permite a los usuarios autenticados remotamente ejecutar c\u00f3digo arbitrario como SYSTEM debido a una deserializaci\u00f3n inapropiada sobre tuber\u00edas nombradas"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.0
},
"baseSeverity": "HIGH",
"exploitabilityScore": 8.0,
"impactScore": 10.0,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-502"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:proofpoint:insider_threat_management:*:*:*:*:*:windows:*:*",
"versionStartIncluding": "6.3",
"versionEndExcluding": "7.4.2",
"matchCriteriaId": "7555EFF6-7B9D-48EC-BCF4-A7F51769E1E4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:proofpoint:insider_threat_management:*:*:*:*:*:windows:*:*",
"versionStartIncluding": "7.5.0",
"versionEndExcluding": "7.5.3",
"matchCriteriaId": "533604AC-2B70-4FE3-AE51-097EE611FD73"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:proofpoint:insider_threat_management:*:*:*:*:*:windows:*:*",
"versionStartIncluding": "7.6.0",
"versionEndExcluding": "7.6.4",
"matchCriteriaId": "EF744303-BBC8-4D9E-B11A-BFB33D071A04"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:proofpoint:insider_threat_management:*:*:*:*:*:windows:*:*",
"versionStartIncluding": "7.7.0",
"versionEndExcluding": "7.7.4",
"matchCriteriaId": "39B3E59B-3DED-4F01-8B0A-7DB79585FBC5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:proofpoint:insider_threat_management:*:*:*:*:*:windows:*:*",
"versionStartIncluding": "7.8.0",
"versionEndExcluding": "7.8.3",
"matchCriteriaId": "EFEABC1C-8420-444E-99FD-2390D0E0ABF6"
}
]
}
]
}
],
"references": [
{
"url": "https://www.proofpoint.com/us/blog",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0002",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink