CVE-2020-23834

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
04/09/2020
Last modified:
16/09/2020

Description

Insecure Service File Permissions in the bd service in Real Time Logic BarracudaDrive v6.5 allow local attackers to escalate privileges to admin by replacing the %SYSTEMDRIVE%\bd\bd.exe file. When the computer next starts, the new bd.exe will be run as LocalSystem.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:realtimelogic:barracudadrive:6.5:*:*:*:*:*:*:*