CVE-2020-13535

A privilege escalation vulnerability exists in Kepware LinkMaster 3.0.94.0. In its default configuration, an attacker can globally overwrite service configuration to execute arbitrary code with NT SYSTEM privileges.
References
Link Resource
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1147 Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:kepware:linkmaster:3.0.94.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-12-18 21:15

Updated : 2022-08-06 03:56


NVD link : CVE-2020-13535

Mitre link : CVE-2020-13535


JSON object : View

Products Affected

kepware

  • linkmaster
CWE
CWE-276

Incorrect Default Permissions