CVE-2020-10962 : In PowerShell App Deployment Toolkit (aka PSAppDeployToolkit) through 3.8.0, an

In PowerShell App Deployment Toolkit (aka PSAppDeployToolkit) through 3.8.0, an incorrect access control vulnerability in the default configuration may allow an authenticated user to potentially enable escalation of privilege via local access.

Published 2023-08-01 02:15:10

Updated 2023-08-04 16:05:32

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2020-10962

Psappdeploytoolkit » Powershell App Deployment Toolkit
Versions up to, including, (<=) 3.8.0
cpe:2.3:a:psappdeploytoolkit:powershell_app_deployment_toolkit:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2020-10962

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 10 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-10962

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	1.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

References for CVE-2020-10962

https://discourse.psappdeploytoolkit.com/t/psappdeploytoolkit-3-8-2/2555

PSAppDeployToolkit 3.8.2 - The Toolkit / Announcements - PSAppDeployToolkit Community
Release Notes
https://github.com/PSAppDeployToolkit/PSAppDeployToolkit/releases

Releases · PSAppDeployToolkit/PSAppDeployToolkit
Release Notes

Jump to

Vulnerability Details : CVE-2020-10962

Products affected by CVE-2020-10962

Exploit prediction scoring system (EPSS) score for CVE-2020-10962

CVSS scores for CVE-2020-10962

References for CVE-2020-10962