CVE-2020-12463
First published: Tue May 05 2020(Updated: )
An elevation of privilege vulnerability exists in Avira Software Updater before 2.0.6.27476 due to improperly handling file hard links. This allows local users to obtain take control of arbitrary files.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Avira Software Updater | <2.0.6.27476 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this Avira Software Updater vulnerability?
The vulnerability ID for this Avira Software Updater vulnerability is CVE-2020-12463.
What is the severity level of CVE-2020-12463?
The severity level of CVE-2020-12463 is high.
What is the affected software for CVE-2020-12463?
The affected software for CVE-2020-12463 is Avira Software Updater version 2.0.6.27476.
How does CVE-2020-12463 exploit the vulnerability?
CVE-2020-12463 exploits the vulnerability by improperly handling file hard links, allowing local users to take control of arbitrary files.
Is there a fix available for CVE-2020-12463?
Yes, a fix is available for CVE-2020-12463. It is recommended to update Avira Software Updater to version 2.0.6.27476 or later.
- collector/nvd-index
- agent/references
- agent/event
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/avira
- canonical/avira software updater