CVE-2020-36154

The Application Wrapper in Pearson VUE VTS Installer 2.3.1911 has Full Control permissions for Everyone in the "%SYSTEMDRIVE%\Pearson VUE" directory, which allows local users to obtain administrative privileges via a Trojan horse application.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:pearson:vue_testing_system:2.3.1911:*:*:*:*:*:*:*

Information

Published : 2021-01-04 09:15

Updated : 2021-01-12 07:36


NVD link : CVE-2020-36154

Mitre link : CVE-2020-36154


JSON object : View

CWE
CWE-732

Incorrect Permission Assignment for Critical Resource

Advertisement

dedicated server usa

Products Affected

pearson

  • vue_testing_system