Lucene search

Local Privilege Escalation in PyInstaller

🗓️ 16 Jan 2020 22:27:18Reported by GitHub Advisory DatabaseType

github🔗 github.com👁 169 Views

Local Privilege Escalation in PyInstaller impacting Windows software frozen in "onefile" mod

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
GithubExploit	Exploit for Incorrect Permission Assignment for Critical Resource in Pyinstaller	22 Jan 202013:23	–	githubexploit
OSV	Local Privilege Escalation in PyInstaller	16 Jan 202022:18	–	osv
OSV	CVE-2019-16784	14 Jan 202020:15	–	osv
OSV	PYSEC-2020-175	14 Jan 202020:15	–	osv
Veracode	Privilege Escalation	17 Jan 202008:58	–	veracode
RedhatCVE	CVE-2019-16784	5 Feb 202518:12	–	redhatcve
Cvelist	CVE-2019-16784 Local Privilege Escalation present only on the Windows version of PyInstaller	14 Jan 202020:10	–	cvelist
Prion	Privilege escalation	14 Jan 202020:15	–	prion
NVD	CVE-2019-16784	14 Jan 202020:15	–	nvd
CVE	CVE-2019-16784	14 Jan 202020:15	–	cve

Vulners

Node

pyinstaller pyinstallerRange<3.6

Source	Link
github	www.github.com/pyinstaller/pyinstaller/security/advisories/GHSA-7fcj-pq9j-wh2r
github	www.github.com/pyinstaller/pyinstaller/commit/42a67148b3bdf9211fda8499fdc5b63acdd7e6cc
github	www.github.com/pyinstaller/pyinstaller/commit/be948cf0954707671aa499da17b10c86b6fa5e5c
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-16784
github	www.github.com/pypa/advisory-database/tree/main/vulns/pyinstaller/PYSEC-2020-175.yaml
github	www.github.com/advisories/GHSA-7fcj-pq9j-wh2r

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Jan 2020 22:18Current

1Low risk

Vulners AI Score1

CVSS24.4

CVSS37 - 7.8

EPSS0.03008

CWE-250