PT-2020-3829 · Microsoft · Windows Speech Runtime+1
Zhiniang Peng
·
Published
2020-08-11
·
Updated
2024-01-19
·
CVE-2020-1522
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
Windows Speech Runtime (affected versions not specified)
Description:
The issue is related to the improper handling of memory by the Windows Speech Runtime, which can lead to an elevation of privilege. To exploit this, an attacker must first gain execution on the victim system and then run a specially crafted application to elevate privileges. The security update corrects how the Windows Speech Runtime handles memory.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows
Windows Speech Runtime