CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-11520

The SDDisk2k.sys driver of WinMagic SecureDoc v8.5 and earlier allows local users to write to arbitrary kernel memory addresses because the IOCTL dispatcher lacks pointer validation. Exploiting this vulnerability results in privileged code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.2%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.6

References

Products affected by CVE-2020-11520

Winmagic » Securedoc » Version: 7.1

cpe:2.3:a:winmagic:securedoc:7.1
Winmagic » Securedoc » Version: 7.2

cpe:2.3:a:winmagic:securedoc:7.2
Winmagic » Securedoc » Version: 7.26

cpe:2.3:a:winmagic:securedoc:7.26
Winmagic » Securedoc » Version: 7.5

cpe:2.3:a:winmagic:securedoc:7.5
Winmagic » Securedoc » Version: 8.1

cpe:2.3:a:winmagic:securedoc:8.1
Winmagic » Securedoc » Version: 8.2

cpe:2.3:a:winmagic:securedoc:8.2
Winmagic » Securedoc » Version: 8.3

cpe:2.3:a:winmagic:securedoc:8.3
Winmagic » Securedoc » Version: 8.5

cpe:2.3:a:winmagic:securedoc:8.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-11520

Products

Pricing

Contact Us