{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-04T02:48:02.018","vulnerabilities":[{"cve":{"id":"CVE-2020-11520","sourceIdentifier":"cve@mitre.org","published":"2020-06-22T18:15:11.230","lastModified":"2024-11-21T04:58:03.740","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The SDDisk2k.sys driver of WinMagic SecureDoc v8.5 and earlier allows local users to write to arbitrary kernel memory addresses because the IOCTL dispatcher lacks pointer validation. Exploiting this vulnerability results in privileged code execution."},{"lang":"es","value":"El controlador SDDisk2k.sys de WinMagic SecureDoc versión v8.5 y anteriores, permite a usuarios locales escribir en direcciones arbitrarias de la memoria del kernel porque el desparcheador IOCTL carece de comprobación del puntero. La explotación de esta vulnerabilidad resulta en una ejecución de código privilegiado"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:P/A:P","baseScore":4.6,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.9,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:winmagic:securedoc:*:*:*:*:*:*:*:*","versionEndIncluding":"8.5","matchCriteriaId":"2979FFF9-77E2-42B7-81C4-2C4A29604CBC"}]}]}],"references":[{"url":"https://www.winmagic.com/support/release-notes/securedoc-v8-5-sr2-hf1","source":"cve@mitre.org","tags":["Release Notes","Vendor Advisory"]},{"url":"https://www.winmagic.com/support/release-notes/securedoc-v8-5-sr2/","source":"cve@mitre.org","tags":["Release Notes","Vendor Advisory"]},{"url":"https://www.winmagic.com/support/release-notes/securedoc-v8-5-sr2-hf1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Vendor Advisory"]},{"url":"https://www.winmagic.com/support/release-notes/securedoc-v8-5-sr2/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Vendor Advisory"]}]}}]}