Vulnerability Details CVE-2020-7745
This affects the package MintegralAdSDK before 6.6.0.0. The SDK distributed by the company contains malicious functionality that acts as a backdoor. Mintegral and their partners (advertisers) can remotely execute arbitrary code on a user device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.6%
CVSS Severity
CVSS v3 Score 7.1
CVSS v2 Score 10.0
Products affected by CVE-2020-7745
-
cpe:2.3:a:mintegral:mintegraladsdk:6.0.1
-
cpe:2.3:a:mintegral:mintegraladsdk:6.1.0
-
cpe:2.3:a:mintegral:mintegraladsdk:6.1.1
-
cpe:2.3:a:mintegral:mintegraladsdk:6.1.2
-
cpe:2.3:a:mintegral:mintegraladsdk:6.1.3
-
cpe:2.3:a:mintegral:mintegraladsdk:6.2.0
-
cpe:2.3:a:mintegral:mintegraladsdk:6.3.1.0
-
cpe:2.3:a:mintegral:mintegraladsdk:6.3.2.0
-
cpe:2.3:a:mintegral:mintegraladsdk:6.3.3.0
-
cpe:2.3:a:mintegral:mintegraladsdk:6.3.4.0
-
cpe:2.3:a:mintegral:mintegraladsdk:6.3.5.0
-
cpe:2.3:a:mintegral:mintegraladsdk:6.3.7.0
-
cpe:2.3:a:mintegral:mintegraladsdk:6.4.0.0
-
cpe:2.3:a:mintegral:mintegraladsdk:6.4.1.0
-
cpe:2.3:a:mintegral:mintegraladsdk:6.5.0.0