VDB
CVE-2020-1986
CVE-2020-1986
PUBLISHED
CVSS 5.5 MEDIUM
Improper input validation vulnerability in Secdo allows an authenticated local user with 'create folders or append data' access to the root of the OS disk (C:\) to cause a system crash on every login. This issue affects all versions Secdo for Windows.
EPSS 0.12% · 30.4th percentile
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.12%
30.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| paloaltonetworks | secdo | |
| Secdo | Secdo | * |
Exploit Intelligence
Timeline
- Apr 8, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
References
- https://security.paloaltonetworks.com/CVE-2020-1990 advisory
- https://security.paloaltonetworks.com/CVE-2020-1978 advisory
- https://security.paloaltonetworks.com/CVE-2020-1984 advisory
- https://security.paloaltonetworks.com/CVE-2020-1992 advisory
- https://security.paloaltonetworks.com/CVE-2020-1989 advisory
- https://security.paloaltonetworks.com/CVE-2020-1985 advisory
- https://security.paloaltonetworks.com/PAN-SA-2020-0002 advisory
- https://security.paloaltonetworks.com/CVE-2020-1991 advisory
- https://security.paloaltonetworks.com/CVE-2020-1987 advisory
- https://security.paloaltonetworks.com/CVE-2020-1988 advisory
- https://security.paloaltonetworks.com/CVE-2020-1986 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2020-1986 advisory