CVE-2020-27708
First published: Fri Oct 30 2020(Updated: )
A vulnerability exists in the Origin Client that could allow a non-Administrative user to elevate their access to either Administrator or System. Once the user has obtained elevated access, they may be able to take control of the system and perform actions otherwise reserved for high privileged users or system Administrators.
Credit: secure@ea.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Electronic Arts Origin | <=10.5.86 | |
| Electronic Arts Origin | <=10.5.86 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-27708?
CVE-2020-27708 has a high severity rating due to its potential for unauthorized elevation of privileges.
How do I fix CVE-2020-27708?
To fix CVE-2020-27708, users should update the Origin Client to version 10.5.87 or later.
What systems are affected by CVE-2020-27708?
CVE-2020-27708 affects both macOS and Windows versions of the Electronic Arts Origin Client up to version 10.5.86.
What can an attacker do if they exploit CVE-2020-27708?
If exploited, an attacker could elevate their access to Administrator or System level, allowing them to control the system.
Is CVE-2020-27708 a common vulnerability?
CVE-2020-27708 is considered critical as it provides a potential pathway for unauthorized access in widely used gaming software.
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/references
- agent/author
- agent/last-modified-date
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ea
- canonical/electronic arts origin
- version/electronic arts origin/10.5.86