CVE-2020-0989

Name of the Vulnerable Software and Affected Versions: Windows Mobile Device Management (MDM) Diagnostics (affected versions not specified)

Description: An information disclosure issue exists due to improper handling of junctions by Windows MDM Diagnostics, allowing an attacker to bypass access restrictions and read files. To exploit this, an attacker must first log on to the system and then run a specially crafted application. The issue is addressed by correcting how Windows MDM Diagnostics handles files.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.