Untrusted Search Path Vulnerability in PDFescape Desktop Installer

Untrusted Search Path Vulnerability in PDFescape Desktop Installer

CVE-2020-9418 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

An untrusted search path vulnerability in the installer of PDFescape Desktop version 4.0.22 and earlier allows an attacker to gain privileges and execute code via DLL hijacking.

Learn more about our Cis Benchmark Audit For Desktop Software.