CVE-2020-23736 — MEDIUM (5.5)

Vulnerability Description

There is a local denial of service vulnerability in DaDa accelerator 5.6.19.816,, attackers can use constructed programs to cause computer crashes (BSOD).

CVSS Score

5.5

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Dadajiasu	Dada Accelerator	5.6.19.816

References

http://www.dadajiasu.netProduct
https://github.com/y5s5k5/CVE-2020-23736Third Party Advisory
https://github.com/y5s5k5/POCtemp5ExploitThird Party Advisory
http://www.dadajiasu.netProduct
https://github.com/y5s5k5/CVE-2020-23736Third Party Advisory
https://github.com/y5s5k5/POCtemp5ExploitThird Party Advisory

FAQ

What is CVE-2020-23736?

CVE-2020-23736 is a vulnerability with a CVSS score of 5.5 (MEDIUM). There is a local denial of service vulnerability in DaDa accelerator 5.6.19.816,, attackers can use constructed programs to cause computer crashes (BSOD).

How severe is CVE-2020-23736?

CVE-2020-23736 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-23736?

Check the references section above for vendor advisories and patch information. Affected products include: Dadajiasu Dada Accelerator.