CVE-2019-1010101

Akeo Consulting Rufus 3.0 and earlier is affected by: Insecure Permissions. The impact is: arbitrary code execution with escalation of…

dwf·CWE-732·Published 2019-07-19

CVSS

—

EPSS

0.03

KEV

Exploits

cve.orgen

282 chars

Akeo Consulting Rufus 3.0 and earlier is affected by: Insecure Permissions. The impact is: arbitrary code execution with escalation of privilege. The component is: Executable installer, portable executable (ALL executables available). The attack vector is: CWE-29, CWE-377, CWE-379.

NVDen

282 chars

NVDes

318 chars

Akeo Consulting Rufus versión 3.0 y anteriores están afectados por: Permisos No Seguros. El impacto es: la ejecución de código arbitrario con la escalada de privilegios. El componente es: Instalador ejecutable, ejecutable portátil (TODOS los ejecutables disponibles). El vector de ataque es: CWE-29, CWE-377, CWE-379.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	7.5	10.0	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
3.0	Primary	NVD	9.8	3.9	5.9	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H