Avira Software Updater 2.0.6.27476 Local Privilege Escalation Vulnerability

Avira Software Updater 2.0.6.27476 Local Privilege Escalation Vulnerability

CVE-2020-12463 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

An elevation of privilege vulnerability exists in Avira Software Updater before 2.0.6.27476 due to improperly handling file hard links. This allows local users to obtain take control of arbitrary files.

Learn more about our User Device Pen Test.