CVE-2020-1054

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Windows versions prior to 10.0.18363

Description An elevation of privilege issue exists due to the Windows kernel-mode driver's failure to properly handle objects in memory. This allows an attacker to potentially elevate their privileges. The issue is related to errors in processing objects in memory.

Recommendations For Windows versions prior to 10.0.18363, update to a version that includes the necessary security patches to resolve the issue. As a temporary workaround, consider restricting access to sensitive system resources to minimize the risk of exploitation.

Exploit

Fix

LPE

Improper Privilege Management

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269CWE-787

Related Identifiers

BDU:2020-02532

CVE-2020-1054

Affected Products

Windows

CVE-2020-1054

Weakness Enumeration

Related Identifiers

Affected Products

References · 22