Vulnerabilities > CVE-2020-9361 - Unspecified vulnerability in Cryptopro CSP 5.0.0.10004

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
cryptopro

Summary

CryptoPro CSP through 5.0.0.10004 on 64-bit platforms allows local users with the SeChangeNotifyPrivilege right to cause denial of service because user-mode input is mishandled during process creation.

Vulnerable Configurations

Part Description Count
Application
Cryptopro
2