CVE-2020-27992

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
02/11/2020
Last modified:
21/07/2021

Description

Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because %PROGRAMFILES(X86)%\Wondershare\dr.fone\Library\DriverInstaller has Full Control for BUILTIN\Users.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:wondershare:dr.fone:3.0.0:*:*:*:*:*:*:*