PT-2020-2924 · Microsoft · Windows Host Guardian Service+1

Published

2020-06-09

Updated

2021-07-21

CVE-2020-1259

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Windows Host Guardian Service (affected versions not specified)

Description A security feature bypass issue exists due to improper handling of recorded and logged hashes by the Windows Host Guardian Service. This could allow a remote attacker to gain unauthorized access to protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522

Related Identifiers

BDU:2020-03081

CVE-2020-1259

Affected Products

Windows

Windows Host Guardian Service

PT-2020-2924 · Microsoft · Windows Host Guardian Service+1

CVE-2020-1259

Weakness Enumeration

Related Identifiers

Affected Products

References · 6