CVE-2020-15480

Published: Aug 7, 2020Modified: Jun 17, 2026

8.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Exploitability: 2.0 / Impact: 6.0

Source: NVD

Description

An issue was discovered in PassMark BurnInTest through 9.1, OSForensics through 7.1, and PerformanceTest through 10. The kernel driver exposes IOCTL functionality that allows low-privilege users to read and write to arbitrary Model Specific Registers (MSRs). This could lead to arbitrary Ring-0 code execution and escalation of privileges. This affects DirectIo32.sys and DirectIo64.sys.

Affected (3)

Products: Passmark: Burnintest, Osforensics, Performancetest

3 products

Performancetest

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Passmark Burnintest	Up to 9.1
Passmark Osforensics	Up to 7.1
Passmark Performancetest	Up to 10.0

References (8)

https://github.com/eset/vulnerability-disclosures

Source: cve@mitre.org

Third Party Advisory

https://github.com/eset/vulnerability-disclosures/blob/master/CVE-2020-15480/CVE-2020-15480.md

Source: cve@mitre.org

ExploitThird Party Advisory

https://www.passmark.com/forum/index.php

Source: cve@mitre.org

Vendor Advisory

https://www.passmark.com/support/index.php

Source: cve@mitre.org

Vendor Advisory

https://github.com/eset/vulnerability-disclosures

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://github.com/eset/vulnerability-disclosures/blob/master/CVE-2020-15480/CVE-2020-15480.md

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://www.passmark.com/forum/index.php

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.passmark.com/support/index.php

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.