CVE-2019-19247
published 2019-12-12CVE-2019-19247: Electronic Arts Origin through 10.5.x allows Elevation of Privilege (issue 1 of 2).
PriorityP337high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.36%
27.9th percentile
Electronic Arts Origin through 10.5.x allows Elevation of Privilege (issue 1 of 2).
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ea | origin | < 10.5.56.33908 | 10.5.56.33908 |
| ea | origin | <= 10.5.56.33908 | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-j68g-j7h6-gwqw: Electronic Arts Origin through 10
ghsa_unreviewed·2022-05-24
CVE-2019-19247 [HIGH] GHSA-j68g-j7h6-gwqw: Electronic Arts Origin through 10
Electronic Arts Origin through 10.5.x allows Elevation of Privilege (issue 1 of 2).
GHSA
GHSA-vqv8-6rvx-qwf6: Electronic Arts Origin 10
ghsa_unreviewed·2022-05-24·CVSS 7.8
CVE-2019-19741 [HIGH] GHSA-vqv8-6rvx-qwf6: Electronic Arts Origin 10
Electronic Arts Origin 10.5.55.33574 is vulnerable to local privilege escalation due to arbitrary directory DACL manipulation, a different issue than CVE-2019-19247 and CVE-2019-19248. When Origin.exe connects to the named pipe OriginClientService, the privileged service verifies the client's executable file instead of its in-memory process (which can be significantly different from the executable file due to, for example, DLL injection). Data transmitted over the pipe is encrypted using a static key. Instead of hooking the pipe communication directly via WriteFileEx(), this can be bypassed by hooking the EVP_EncryptUpdate() function of libeay32.dll. The pipe takes the command CreateDirectory to create a directory and adjust the directory DACL. Calls to this function can be intercepted, th
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2019-12-12
Published