Vulnerability Details CVE-2020-28369
In BeyondTrust Privilege Management for Windows (aka PMfW) through 5.7, a SYSTEM installation causes Cryptbase.dll to be loaded from the user-writable location %WINDIR%\Temp.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.5%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2020-28369
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:-
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:4.3
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:4.4
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.0
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.1
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.2.21
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.2.28
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.216
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.219
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.229
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.3.230
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.4
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.5
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.5.144
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.6
-
cpe:2.3:a:beyondtrust:privilege_management_for_windows:5.7