CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-13523

An exploitable information disclosure vulnerability exists in SoftPerfect’s RAM Disk 4.1 spvve.sys driver. A specially crafted I/O request packet (IRP) can cause the disclosure of sensitive information. An attacker can send a malicious IRP to trigger this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.3%

CVSS Severity

CVSS v3 Score 3.8

CVSS v2 Score 2.1

References

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1122
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1122

Products affected by CVE-2020-13523

Softperfect » Ram Disk » Version: 4.1

cpe:2.3:a:softperfect:ram_disk:4.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-13523

Products

Pricing

Contact Us