CVE-2020-23834 — HIGH (8.8)

Vulnerability Description

Insecure Service File Permissions in the bd service in Real Time Logic BarracudaDrive v6.5 allow local attackers to escalate privileges to admin by replacing the %SYSTEMDRIVE%\bd\bd.exe file. When the computer next starts, the new bd.exe will be run as LocalSystem.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Realtimelogic	Barracudadrive	6.5

Related Weaknesses (CWE)

CWE-732

References

https://github.com/boku7/BarracudaDrivev6.5-LocalPrivEscThird Party Advisory
https://www.exploit-db.com/exploits/48789ExploitThird Party AdvisoryVDB Entry
https://github.com/boku7/BarracudaDrivev6.5-LocalPrivEscThird Party Advisory
https://www.exploit-db.com/exploits/48789ExploitThird Party AdvisoryVDB Entry

FAQ

What is CVE-2020-23834?

CVE-2020-23834 is a vulnerability with a CVSS score of 8.8 (HIGH). Insecure Service File Permissions in the bd service in Real Time Logic BarracudaDrive v6.5 allow local attackers to escalate privileges to admin by replacing the %SYSTEMDRIVE%\bd\bd.exe file. When the...

How severe is CVE-2020-23834?

CVE-2020-23834 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-23834?

Check the references section above for vendor advisories and patch information. Affected products include: Realtimelogic Barracudadrive.