Privilege Escalation Vulnerability in ZoneAlarm Anti-Ransomware Software
CVE-2020-6012

7.4HIGH

Key Information:

Vendor
Checkpoint
Status
Zonealarm Anti-ransomware
Vendor
CVE Published:
4 August 2020

Summary

ZoneAlarm Anti-Ransomware prior to version 1.0.713 has a vulnerability that enables a local attacker to escalate privileges. This occurs due to the software copying files from a low-privileged directory for reporting purposes. An attacker with timed access can replace these files with malicious content or use symbolic links. This situation can lead to exploitation, particularly on systems that have not been patched for other vulnerabilities like CVE-2020-0896.

Affected Version(s)

ZoneAlarm Anti-Ransomware before 1.0.713

References

https://www.zonealarm.com/software/extreme-security/relea...
x_refsource_MISC
https://www.zonealarm.com/anti-ransomware/release-history
x_refsource_MISC
https://danishcyberdefence.dk/blog/zonealarm-check-point
x_refsource_MISC

CVSS V3.1

Score:
7.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.