Vulnerabilities > EA > Origin

DATE CVE VULNERABILITY TITLE RISK
2020-11-02 CVE-2020-27708 Uncontrolled Search Path Element vulnerability in EA Origin
A vulnerability exists in the Origin Client that could allow a non-Administrative user to elevate their access to either Administrator or System.
local
low complexity
ea CWE-427
7.8
2020-02-20 CVE-2019-19741 Unspecified vulnerability in EA Origin
Electronic Arts Origin 10.5.55.33574 is vulnerable to local privilege escalation due to arbitrary directory DACL manipulation, a different issue than CVE-2019-19247 and CVE-2019-19248.
local
low complexity
ea
7.8
2019-12-12 CVE-2019-19248 Unspecified vulnerability in EA Origin 10.5.36/10.5.37/10.5.55.33574
Electronic Arts Origin through 10.5.x allows Elevation of Privilege (issue 2 of 2).
local
low complexity
ea
7.8
2019-12-12 CVE-2019-19247 Unspecified vulnerability in EA Origin
Electronic Arts Origin through 10.5.x allows Elevation of Privilege (issue 1 of 2).
local
low complexity
ea
7.8
2019-06-14 CVE-2019-12828 Data Processing Errors vulnerability in EA Origin 10.5.36/10.5.37
An issue was discovered in Electronic Arts Origin before 10.5.39.
network
low complexity
ea CWE-19
8.8
2019-04-19 CVE-2019-11354 Injection vulnerability in EA Origin 10.5.36
The client in Electronic Arts (EA) Origin 10.5.36 on Windows allows template injection in the title parameter of the Origin2 URI handler.
local
low complexity
ea CWE-74
7.8