CVE-2020-35364

Beijing Huorong Internet Security 5.0.55.2 allows a non-admin user to escalate privileges by injecting code into a process, and then waiting for a Huorong services restart or a system reboot.
References
Link Resource
https://github.com/yangfan6888/PoC/blob/main/PoC.cpp Exploit Third Party Advisory
https://github.com/yangfan6888/PoC Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:huorong:internet_security:5.0.55.2:*:*:*:*:*:*:*

Information

Published : 2020-12-26 07:15

Updated : 2021-07-21 11:39


NVD link : CVE-2020-35364

Mitre link : CVE-2020-35364

Products Affected
No products.