CVE-2020-13539

Description

An exploitable local privilege elevation vulnerability exists in the file system permissions of the Win-911 Enterprise V4.20.13 install directory via “WIN-911 Mobile Runtime” service. Depending on the vector chosen, an attacker can overwrite various executables which could lead to escalation of the privileges when executed.

Affected Software
References

Software	From	Fixed in
win911 / win-911	4.20.13	4.20.13.x

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1150
https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1150

Severity: High

CVE: CVE-2020-13539
Published: Jan 5, 2021
Updated: Apr 13, 2023
Exploit:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

CWE-276

CVE-2020-13539

Description

Details

CVSS v3

CVSS v2

CWEs