Lucene search

K
cvelistMitreCVELIST:CVE-2020-28407
HistoryNov 03, 2023 - 12:00 a.m.

CVE-2020-28407

2023-11-0300:00:00
mitre
www.cve.org
swtpm arbitrary files overwrite

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

In swtpm before 0.4.2 and 0.5.x before 0.5.1, a local attacker may be able to overwrite arbitrary files via a symlink attack against a temporary file such as TMP2-00.permall.

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%