CVE-2020-10143
CVE-2020-10143 affects Macrium Reflect via an OpenSSL OPENSSLDIR of C:\openssl\ and a privileged service that loads OpenSSL. An unprivileged Windows user can create a crafted openssl.cnf path to achieve arbitrary code execution with SYSTEM privileges. Remediation available: upgrade to Macrium Ref...