CVE-2020-3350

EPSS 0.12%
Veröffentlicht 18.06.2020 03:15:14
Zuletzt bearbeitet 21.11.2024 05:30:51
Quelle psirt@cisco.com
Teams Watchlist Login
Unerledigt Login

A vulnerability in the endpoint software of Cisco AMP for Endpoints and Clam AntiVirus could allow an authenticated, local attacker to cause the running software to delete arbitrary files on the system. The vulnerability is due to a race condition that could occur when scanning malicious files. An attacker with local shell access could exploit this vulnerability by executing a script that could trigger the race condition. A successful exploit could allow the attacker to delete arbitrary files on the system that the attacker would not normally have privileges to delete, producing system instability or causing the endpoint software to stop working.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 10

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Advanced Malware Protection For Endpoints SwPlatformlinux Version < 1.12.4

Cisco ≫ Advanced Malware Protection For Endpoints SwPlatformmac_os Version < 1.12.4

Cisco ≫ Clam Antivirus Version < 0.102.4

Fedoraproject ≫ Fedora Version31

Fedoraproject ≫ Fedora Version32

Debian ≫ Debian Linux Version9.0

Canonical ≫ Ubuntu Linux Version12.04 SwEdition-

Canonical ≫ Ubuntu Linux Version14.04 SwEditionesm

Canonical ≫ Ubuntu Linux Version16.04 SwEditionesm

Canonical ≫ Ubuntu Linux Version18.04 SwEditionlts

Canonical ≫ Ubuntu Linux Version20.04 SwEditionlts

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.12%	0.321

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.3	1	5.2	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H
nvd@nist.gov	3.3	3.4	4.9	AV:L/AC:M/Au:N/C:N/I:P/A:P
psirt@cisco.com	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

https://lists.debian.org/debian-lts-announce/2020/08/msg00010.html

Third Party Advisory

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IJ67VH37NCG25PICGWFWZHSVG7PBT7MC/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QM7EXJHDEZJLWM2NKH6TCDXOBP5NNYIN/

https://security.gentoo.org/glsa/202007-23

Third Party Advisory

https://usn.ubuntu.com/4435-1/

Third Party Advisory

https://usn.ubuntu.com/4435-2/

Third Party Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-famp-ZEpdXy

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2020-3350

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-3350

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-3350

EUVD