Search

Find a vulnerability

Search criteria

    70 vulnerabilities found for windows_server_1803 by microsoft

    CVE-2020-0986 (GCVE-0-2020-0986)

    Vulnerability from nvd – Published: 2020-06-09 19:43 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-1276, CVE-2020-1307, CVE-2020-1316.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 2004 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:18:03.566Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0986"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/160698/Microsoft-Windows-splWOW64-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0986",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:01:08.808827Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0986"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:42.145Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0986"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2020-0986 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 2004 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 2004 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 2004 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 2004 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka \u0027Windows Kernel Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-1276, CVE-2020-1307, CVE-2020-1316."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-12-23T19:06:10.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0986"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/160698/Microsoft-Windows-splWOW64-Privilege-Escalation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0986",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 2004 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 2004 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 2004 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 2004 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka \u0027Windows Kernel Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-1276, CVE-2020-1307, CVE-2020-1316."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0986",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0986"
                },
                {
                  "name": "http://packetstormsecurity.com/files/160698/Microsoft-Windows-splWOW64-Privilege-Escalation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/160698/Microsoft-Windows-splWOW64-Privilege-Escalation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0986",
        "datePublished": "2020-06-09T19:43:14.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:42.145Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-1054 (GCVE-0-2020-1054)

    Vulnerability from nvd – Published: 2020-05-21 22:52 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1143.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:25:01.194Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1054"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/160515/Microsoft-Windows-DrawIconEx-Local-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-1054",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:14:00.273331Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-1054"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:43.480Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-1054"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2020-1054 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka \u0027Win32k Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-1143."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-12-15T17:06:13.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1054"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/160515/Microsoft-Windows-DrawIconEx-Local-Privilege-Escalation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-1054",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka \u0027Win32k Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-1143."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1054",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1054"
                },
                {
                  "name": "http://packetstormsecurity.com/files/160515/Microsoft-Windows-DrawIconEx-Local-Privilege-Escalation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/160515/Microsoft-Windows-DrawIconEx-Local-Privilege-Escalation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-1054",
        "datePublished": "2020-05-21T22:52:50.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:43.480Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-1027 (GCVE-0-2020-1027)

    Vulnerability from nvd – Published: 2020-04-15 15:13 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1003.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:25:00.878Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1027"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/168068/Windows-sxs-CNodeFactory-XMLParser_Element_doc_assembly_assemblyIdentity-Heap-Buffer-Overflow.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-1027",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:14:06.659846Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-05-23",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-1027"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:46.038Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-1027"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-05-23T00:00:00.000Z",
                "value": "CVE-2020-1027 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka \u0027Windows Kernel Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1003."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-08-12T16:10:23.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1027"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/168068/Windows-sxs-CNodeFactory-XMLParser_Element_doc_assembly_assemblyIdentity-Heap-Buffer-Overflow.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-1027",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka \u0027Windows Kernel Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1003."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1027",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1027"
                },
                {
                  "name": "http://packetstormsecurity.com/files/168068/Windows-sxs-CNodeFactory-XMLParser_Element_doc_assembly_assemblyIdentity-Heap-Buffer-Overflow.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/168068/Windows-sxs-CNodeFactory-XMLParser_Element_doc_assembly_assemblyIdentity-Heap-Buffer-Overflow.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-1027",
        "datePublished": "2020-04-15T15:13:29.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:46.038Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-0938 (GCVE-0-2020-0938)

    Vulnerability from nvd – Published: 2020-04-15 15:12 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Adobe Font Manager Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1020.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Remote Code Execution
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:18:03.610Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0938"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/161299/Apple-CoreText-libFontParser.dylib-Stack-Corruption.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0938",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-04-03T18:38:08.532789Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0938"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:46.503Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0938"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2020-0938 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka \u0027Adobe Font Manager Library Remote Code Execution Vulnerability\u0027. This CVE ID is unique from CVE-2020-1020."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-02-05T17:06:21.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0938"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/161299/Apple-CoreText-libFontParser.dylib-Stack-Corruption.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0938",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka \u0027Adobe Font Manager Library Remote Code Execution Vulnerability\u0027. This CVE ID is unique from CVE-2020-1020."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Remote Code Execution"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0938",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0938"
                },
                {
                  "name": "http://packetstormsecurity.com/files/161299/Apple-CoreText-libFontParser.dylib-Stack-Corruption.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/161299/Apple-CoreText-libFontParser.dylib-Stack-Corruption.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0938",
        "datePublished": "2020-04-15T15:12:55.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:46.503Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-0787 (GCVE-0-2020-0787)

    Vulnerability from nvd – Published: 2020-03-12 15:48 – Updated: 2025-10-21 23:35
    VLAI CISA ENISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:11:05.930Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0787"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/158056/Background-Intelligent-Transfer-Service-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0787",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:15:57.792378Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-01-28",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0787"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:48.780Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0787"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-01-28T00:00:00.000Z",
                "value": "CVE-2020-0787 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka \u0027Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability\u0027."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-06-11T18:06:06.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0787"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/158056/Background-Intelligent-Transfer-Service-Privilege-Escalation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0787",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka \u0027Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability\u0027."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0787",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0787"
                },
                {
                  "name": "http://packetstormsecurity.com/files/158056/Background-Intelligent-Transfer-Service-Privilege-Escalation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/158056/Background-Intelligent-Transfer-Service-Privilege-Escalation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0787",
        "datePublished": "2020-03-12T15:48:16.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:48.780Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-0683 (GCVE-0-2020-0683)

    Vulnerability from nvd – Published: 2020-02-11 21:22 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0686.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:11:05.557Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0683"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0683",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:16:53.203610Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0683"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:51.493Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0683"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2020-0683 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka \u0027Windows Installer Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-0686."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-08-20T16:53:21.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0683"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0683",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka \u0027Windows Installer Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-0686."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0683",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0683"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0683",
        "datePublished": "2020-02-11T21:22:57.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:51.493Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-0638 (GCVE-0-2020-0638)

    Vulnerability from nvd – Published: 2020-01-14 23:11 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Update Notification Manager Elevation of Privilege Vulnerability'.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server Affected: 2019
    Affected: 2019 (Core installation)
    Affected: version 1803 (Core Installation)
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:11:04.612Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0638"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0638",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:20:05.875582Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-05-23",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0638"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:53.819Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0638"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-05-23T00:00:00.000Z",
                "value": "CVE-2020-0638 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka \u0027Update Notification Manager Elevation of Privilege Vulnerability\u0027."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-01-14T23:11:35.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0638"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0638",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "version 1803  (Core Installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka \u0027Update Notification Manager Elevation of Privilege Vulnerability\u0027."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0638",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0638"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0638",
        "datePublished": "2020-01-14T23:11:35.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:53.819Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-0601 (GCVE-0-2020-0601)

    Vulnerability from nvd – Published: 2020-01-14 23:11 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka 'Windows CryptoAPI Spoofing Vulnerability'.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Spoofing
    • CWE-295 - Improper Certificate Validation
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:11:04.613Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/155961/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/155960/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 8.1,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0601",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:27:42.659796Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0601"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-295",
                    "description": "CWE-295 Improper Certificate Validation",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:53.978Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0601"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2020-0601 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka \u0027Windows CryptoAPI Spoofing Vulnerability\u0027."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Spoofing",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-01-16T17:06:04.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/155961/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/155960/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0601",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka \u0027Windows CryptoAPI Spoofing Vulnerability\u0027."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Spoofing"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601"
                },
                {
                  "name": "http://packetstormsecurity.com/files/155961/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/155961/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
                },
                {
                  "name": "http://packetstormsecurity.com/files/155960/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/155960/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0601",
        "datePublished": "2020-01-14T23:11:20.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:53.978Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1405 (GCVE-0-2019-1405)

    Vulnerability from nvd – Published: 2019-11-12 18:53 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka 'Windows UPnP Service Elevation of Privilege Vulnerability'.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-269 - Improper Privilege Management
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:20:26.847Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1405"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1405",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:29:36.885227Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-03-15",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1405"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-269",
                    "description": "CWE-269 Improper Privilege Management",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:58.095Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1405"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-03-15T00:00:00.000Z",
                "value": "CVE-2019-1405 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka \u0027Windows UPnP Service Elevation of Privilege Vulnerability\u0027."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-12-18T23:05:59.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1405"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1405",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka \u0027Windows UPnP Service Elevation of Privilege Vulnerability\u0027."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1405",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1405"
                },
                {
                  "name": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1405",
        "datePublished": "2019-11-12T18:53:00.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:58.095Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1322 (GCVE-0-2019-1322)

    Vulnerability from nvd – Published: 2019-10-10 13:28 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1320, CVE-2019-1340.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:13:30.374Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1322"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1322",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-04T15:31:08.945614Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-03-15",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1322"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "description": "CWE-noinfo Not enough information",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:29.390Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1322"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-03-15T00:00:00.000Z",
                "value": "CVE-2019-1322 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka \u0027Microsoft Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1320, CVE-2019-1340."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-12-18T23:06:00.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1322"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1322",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka \u0027Microsoft Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1320, CVE-2019-1340."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1322",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1322"
                },
                {
                  "name": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1322",
        "datePublished": "2019-10-10T13:28:41.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:29.390Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1253 (GCVE-0-2019-1253)

    Vulnerability from nvd – Published: 2019-09-11 21:24 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1215, CVE-2019-1278, CVE-2019-1303.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1703 for 32-bit Systems
    Affected: 10 Version 1703 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:13:29.559Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1253"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/154488/AppXSvc-17763.1.amd64fre.rs5_release.180914-1434-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1253",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T16:08:58.756098Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-03-15",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1253"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:30.968Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1253"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-03-15T00:00:00.000Z",
                "value": "CVE-2019-1253 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1703 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1215, CVE-2019-1278, CVE-2019-1303."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-09-16T17:06:21.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1253"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/154488/AppXSvc-17763.1.amd64fre.rs5_release.180914-1434-Privilege-Escalation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1253",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1703 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1215, CVE-2019-1278, CVE-2019-1303."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1253",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1253"
                },
                {
                  "name": "http://packetstormsecurity.com/files/154488/AppXSvc-17763.1.amd64fre.rs5_release.180914-1434-Privilege-Escalation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/154488/AppXSvc-17763.1.amd64fre.rs5_release.180914-1434-Privilege-Escalation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1253",
        "datePublished": "2019-09-11T21:24:59.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:30.968Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1215 (GCVE-0-2019-1215)

    Vulnerability from nvd – Published: 2019-09-11 21:24 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1253, CVE-2019-1278, CVE-2019-1303.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-269 - Improper Privilege Management
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 10 Version 1703 for 32-bit Systems
    Affected: 10 Version 1703 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:13:29.707Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1215"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1215",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T16:09:48.885850Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1215"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-269",
                    "description": "CWE-269 Improper Privilege Management",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:31.121Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1215"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2019-1215 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1253, CVE-2019-1278, CVE-2019-1303."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-09-11T21:24:58.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1215"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1215",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1253, CVE-2019-1278, CVE-2019-1303."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1215",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1215"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1215",
        "datePublished": "2019-09-11T21:24:58.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:31.121Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1214 (GCVE-0-2019-1214)

    Vulnerability from nvd – Published: 2019-09-11 21:24 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 10 Version 1703 for 32-bit Systems
    Affected: 10 Version 1703 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:13:29.129Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1214"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1214",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T16:10:35.768549Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1214"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-119",
                    "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:31.259Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1214"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2019-1214 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka \u0027Windows Common Log File System Driver Elevation of Privilege Vulnerability\u0027."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-09-11T21:24:58.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1214"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1214",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka \u0027Windows Common Log File System Driver Elevation of Privilege Vulnerability\u0027."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1214",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1214"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1214",
        "datePublished": "2019-09-11T21:24:58.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:31.259Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1130 (GCVE-0-2019-1130)

    Vulnerability from nvd – Published: 2019-07-29 14:13 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1129.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Server Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Create a notification for this product.
    Microsoft Windows Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 10 Version 1703 for 32-bit Systems
    Affected: 10 Version 1703 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:06:31.661Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1130"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1130",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T16:07:17.936419Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-05-23",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1130"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:32.799Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1130"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-05-23T00:00:00.000Z",
                "value": "CVE-2019-1130 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                }
              ]
            },
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1129."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-07-29T14:13:22.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1130"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1130",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1129."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1130",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1130"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1130",
        "datePublished": "2019-07-29T14:13:22.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:32.799Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1129 (GCVE-0-2019-1129)

    Vulnerability from nvd – Published: 2019-07-29 14:13 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1130.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1703 for 32-bit Systems
    Affected: 10 Version 1703 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:06:31.656Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1129"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1129",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T16:15:56.335080Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-03-15",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1129"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:32.929Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1129"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-03-15T00:00:00.000Z",
                "value": "CVE-2019-1129 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1703 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1130."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-07-29T14:13:14.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1129"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1129",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1703 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1130."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1129",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1129"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1129",
        "datePublished": "2019-07-29T14:13:14.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:32.929Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-0986 (GCVE-0-2020-0986)

    Vulnerability from cvelistv5 – Published: 2020-06-09 19:43 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-1276, CVE-2020-1307, CVE-2020-1316.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 2004 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:18:03.566Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0986"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/160698/Microsoft-Windows-splWOW64-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0986",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:01:08.808827Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0986"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:42.145Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0986"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2020-0986 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 2004 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 2004 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 2004 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 2004 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka \u0027Windows Kernel Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-1276, CVE-2020-1307, CVE-2020-1316."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-12-23T19:06:10.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0986"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/160698/Microsoft-Windows-splWOW64-Privilege-Escalation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0986",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 2004 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 2004 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 2004 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 2004 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka \u0027Windows Kernel Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-1276, CVE-2020-1307, CVE-2020-1316."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0986",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0986"
                },
                {
                  "name": "http://packetstormsecurity.com/files/160698/Microsoft-Windows-splWOW64-Privilege-Escalation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/160698/Microsoft-Windows-splWOW64-Privilege-Escalation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0986",
        "datePublished": "2020-06-09T19:43:14.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:42.145Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-1054 (GCVE-0-2020-1054)

    Vulnerability from cvelistv5 – Published: 2020-05-21 22:52 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1143.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:25:01.194Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1054"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/160515/Microsoft-Windows-DrawIconEx-Local-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-1054",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:14:00.273331Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-1054"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:43.480Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-1054"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2020-1054 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka \u0027Win32k Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-1143."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-12-15T17:06:13.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1054"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/160515/Microsoft-Windows-DrawIconEx-Local-Privilege-Escalation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-1054",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka \u0027Win32k Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-1143."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1054",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1054"
                },
                {
                  "name": "http://packetstormsecurity.com/files/160515/Microsoft-Windows-DrawIconEx-Local-Privilege-Escalation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/160515/Microsoft-Windows-DrawIconEx-Local-Privilege-Escalation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-1054",
        "datePublished": "2020-05-21T22:52:50.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:43.480Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-1027 (GCVE-0-2020-1027)

    Vulnerability from cvelistv5 – Published: 2020-04-15 15:13 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1003.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:25:00.878Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1027"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/168068/Windows-sxs-CNodeFactory-XMLParser_Element_doc_assembly_assemblyIdentity-Heap-Buffer-Overflow.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-1027",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:14:06.659846Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-05-23",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-1027"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:46.038Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-1027"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-05-23T00:00:00.000Z",
                "value": "CVE-2020-1027 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka \u0027Windows Kernel Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1003."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-08-12T16:10:23.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1027"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/168068/Windows-sxs-CNodeFactory-XMLParser_Element_doc_assembly_assemblyIdentity-Heap-Buffer-Overflow.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-1027",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka \u0027Windows Kernel Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1003."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1027",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1027"
                },
                {
                  "name": "http://packetstormsecurity.com/files/168068/Windows-sxs-CNodeFactory-XMLParser_Element_doc_assembly_assemblyIdentity-Heap-Buffer-Overflow.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/168068/Windows-sxs-CNodeFactory-XMLParser_Element_doc_assembly_assemblyIdentity-Heap-Buffer-Overflow.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-1027",
        "datePublished": "2020-04-15T15:13:29.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:46.038Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-0938 (GCVE-0-2020-0938)

    Vulnerability from cvelistv5 – Published: 2020-04-15 15:12 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Adobe Font Manager Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1020.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Remote Code Execution
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:18:03.610Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0938"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/161299/Apple-CoreText-libFontParser.dylib-Stack-Corruption.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0938",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-04-03T18:38:08.532789Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0938"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:46.503Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0938"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2020-0938 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka \u0027Adobe Font Manager Library Remote Code Execution Vulnerability\u0027. This CVE ID is unique from CVE-2020-1020."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-02-05T17:06:21.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0938"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/161299/Apple-CoreText-libFontParser.dylib-Stack-Corruption.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0938",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka \u0027Adobe Font Manager Library Remote Code Execution Vulnerability\u0027. This CVE ID is unique from CVE-2020-1020."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Remote Code Execution"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0938",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0938"
                },
                {
                  "name": "http://packetstormsecurity.com/files/161299/Apple-CoreText-libFontParser.dylib-Stack-Corruption.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/161299/Apple-CoreText-libFontParser.dylib-Stack-Corruption.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0938",
        "datePublished": "2020-04-15T15:12:55.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:46.503Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-0787 (GCVE-0-2020-0787)

    Vulnerability from cvelistv5 – Published: 2020-03-12 15:48 – Updated: 2025-10-21 23:35
    VLAI CISA ENISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:11:05.930Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0787"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/158056/Background-Intelligent-Transfer-Service-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0787",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:15:57.792378Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-01-28",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0787"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:48.780Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0787"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-01-28T00:00:00.000Z",
                "value": "CVE-2020-0787 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka \u0027Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability\u0027."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-06-11T18:06:06.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0787"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/158056/Background-Intelligent-Transfer-Service-Privilege-Escalation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0787",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka \u0027Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability\u0027."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0787",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0787"
                },
                {
                  "name": "http://packetstormsecurity.com/files/158056/Background-Intelligent-Transfer-Service-Privilege-Escalation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/158056/Background-Intelligent-Transfer-Service-Privilege-Escalation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0787",
        "datePublished": "2020-03-12T15:48:16.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:48.780Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-0683 (GCVE-0-2020-0683)

    Vulnerability from cvelistv5 – Published: 2020-02-11 21:22 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0686.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:11:05.557Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0683"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0683",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:16:53.203610Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0683"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:51.493Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0683"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2020-0683 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka \u0027Windows Installer Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-0686."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-08-20T16:53:21.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0683"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0683",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka \u0027Windows Installer Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2020-0686."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0683",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0683"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0683",
        "datePublished": "2020-02-11T21:22:57.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:51.493Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-0638 (GCVE-0-2020-0638)

    Vulnerability from cvelistv5 – Published: 2020-01-14 23:11 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Update Notification Manager Elevation of Privilege Vulnerability'.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server Affected: 2019
    Affected: 2019 (Core installation)
    Affected: version 1803 (Core Installation)
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:11:04.612Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0638"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0638",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:20:05.875582Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-05-23",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0638"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:53.819Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0638"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-05-23T00:00:00.000Z",
                "value": "CVE-2020-0638 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka \u0027Update Notification Manager Elevation of Privilege Vulnerability\u0027."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-01-14T23:11:35.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0638"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0638",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "version 1803  (Core Installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka \u0027Update Notification Manager Elevation of Privilege Vulnerability\u0027."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0638",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0638"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0638",
        "datePublished": "2020-01-14T23:11:35.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:53.819Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-0601 (GCVE-0-2020-0601)

    Vulnerability from cvelistv5 – Published: 2020-01-14 23:11 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka 'Windows CryptoAPI Spoofing Vulnerability'.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Spoofing
    • CWE-295 - Improper Certificate Validation
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T06:11:04.613Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/155961/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/155960/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 8.1,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2020-0601",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:27:42.659796Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0601"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-295",
                    "description": "CWE-295 Improper Certificate Validation",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:53.978Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0601"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2020-0601 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1909 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka \u0027Windows CryptoAPI Spoofing Vulnerability\u0027."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Spoofing",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-01-16T17:06:04.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/155961/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/155960/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2020-0601",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1909 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1909 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka \u0027Windows CryptoAPI Spoofing Vulnerability\u0027."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Spoofing"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601"
                },
                {
                  "name": "http://packetstormsecurity.com/files/155961/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/155961/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
                },
                {
                  "name": "http://packetstormsecurity.com/files/155960/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/155960/CurveBall-Microsoft-Windows-CryptoAPI-Spoofing-Proof-Of-Concept.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2020-0601",
        "datePublished": "2020-01-14T23:11:20.000Z",
        "dateReserved": "2019-11-04T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:53.978Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1405 (GCVE-0-2019-1405)

    Vulnerability from cvelistv5 – Published: 2019-11-12 18:53 – Updated: 2025-10-21 23:35
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka 'Windows UPnP Service Elevation of Privilege Vulnerability'.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-269 - Improper Privilege Management
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:20:26.847Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1405"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1405",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T15:29:36.885227Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-03-15",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1405"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-269",
                    "description": "CWE-269 Improper Privilege Management",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:35:58.095Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1405"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-03-15T00:00:00.000Z",
                "value": "CVE-2019-1405 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka \u0027Windows UPnP Service Elevation of Privilege Vulnerability\u0027."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-12-18T23:05:59.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1405"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1405",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka \u0027Windows UPnP Service Elevation of Privilege Vulnerability\u0027."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1405",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1405"
                },
                {
                  "name": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1405",
        "datePublished": "2019-11-12T18:53:00.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:35:58.095Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1322 (GCVE-0-2019-1322)

    Vulnerability from cvelistv5 – Published: 2019-10-10 13:28 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1320, CVE-2019-1340.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:13:30.374Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1322"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1322",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-04T15:31:08.945614Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-03-15",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1322"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "description": "CWE-noinfo Not enough information",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:29.390Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1322"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-03-15T00:00:00.000Z",
                "value": "CVE-2019-1322 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka \u0027Microsoft Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1320, CVE-2019-1340."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-12-18T23:06:00.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1322"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1322",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka \u0027Microsoft Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1320, CVE-2019-1340."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1322",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1322"
                },
                {
                  "name": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/155723/Microsoft-UPnP-Local-Privilege-Elevation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1322",
        "datePublished": "2019-10-10T13:28:41.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:29.390Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1253 (GCVE-0-2019-1253)

    Vulnerability from cvelistv5 – Published: 2019-09-11 21:24 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1215, CVE-2019-1278, CVE-2019-1303.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1703 for 32-bit Systems
    Affected: 10 Version 1703 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:13:29.559Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1253"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/154488/AppXSvc-17763.1.amd64fre.rs5_release.180914-1434-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1253",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T16:08:58.756098Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-03-15",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1253"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:30.968Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1253"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-03-15T00:00:00.000Z",
                "value": "CVE-2019-1253 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1703 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1215, CVE-2019-1278, CVE-2019-1303."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-09-16T17:06:21.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1253"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/154488/AppXSvc-17763.1.amd64fre.rs5_release.180914-1434-Privilege-Escalation.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1253",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1703 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1215, CVE-2019-1278, CVE-2019-1303."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1253",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1253"
                },
                {
                  "name": "http://packetstormsecurity.com/files/154488/AppXSvc-17763.1.amd64fre.rs5_release.180914-1434-Privilege-Escalation.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/154488/AppXSvc-17763.1.amd64fre.rs5_release.180914-1434-Privilege-Escalation.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1253",
        "datePublished": "2019-09-11T21:24:59.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:30.968Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1214 (GCVE-0-2019-1214)

    Vulnerability from cvelistv5 – Published: 2019-09-11 21:24 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 10 Version 1703 for 32-bit Systems
    Affected: 10 Version 1703 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:13:29.129Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1214"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1214",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T16:10:35.768549Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1214"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-119",
                    "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:31.259Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1214"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2019-1214 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka \u0027Windows Common Log File System Driver Elevation of Privilege Vulnerability\u0027."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-09-11T21:24:58.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1214"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1214",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka \u0027Windows Common Log File System Driver Elevation of Privilege Vulnerability\u0027."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1214",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1214"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1214",
        "datePublished": "2019-09-11T21:24:58.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:31.259Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1215 (GCVE-0-2019-1215)

    Vulnerability from cvelistv5 – Published: 2019-09-11 21:24 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1253, CVE-2019-1278, CVE-2019-1303.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-269 - Improper Privilege Management
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 7 for 32-bit Systems Service Pack 1
    Affected: 7 for x64-based Systems Service Pack 1
    Affected: 8.1 for 32-bit systems
    Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 10 Version 1703 for 32-bit Systems
    Affected: 10 Version 1703 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
    Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
    Affected: 2008 R2 for x64-based Systems Service Pack 1
    Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
    Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Affected: 2008 for Itanium-Based Systems Service Pack 2
    Affected: 2008 for 32-bit Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2
    Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:13:29.707Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1215"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1215",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T16:09:48.885850Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2021-11-03",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1215"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-269",
                    "description": "CWE-269 Improper Privilege Management",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:31.121Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1215"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2021-11-03T00:00:00.000Z",
                "value": "CVE-2019-1215 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "7 for 32-bit Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "7 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "8.1 for 32-bit systems"
                },
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 R2 for x64-based Systems Service Pack 1"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2008 for Itanium-Based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for 32-bit Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2"
                },
                {
                  "status": "affected",
                  "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1253, CVE-2019-1278, CVE-2019-1303."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-09-11T21:24:58.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1215"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1215",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "7 for 32-bit Systems Service Pack 1"
                              },
                              {
                                "version_value": "7 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "8.1 for 32-bit systems"
                              },
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                              },
                              {
                                "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                              },
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              },
                              {
                                "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for 32-bit Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2"
                              },
                              {
                                "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1253, CVE-2019-1278, CVE-2019-1303."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1215",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1215"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1215",
        "datePublished": "2019-09-11T21:24:58.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:31.121Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1130 (GCVE-0-2019-1130)

    Vulnerability from cvelistv5 – Published: 2019-07-29 14:13 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1129.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Server Affected: 2012
    Affected: 2012 (Core installation)
    Affected: 2012 R2
    Affected: 2012 R2 (Core installation)
    Affected: 2016
    Affected: 2016 (Core installation)
    Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Create a notification for this product.
    Microsoft Windows Affected: 8.1 for x64-based systems
    Affected: RT 8.1
    Affected: 10 for 32-bit Systems
    Affected: 10 for x64-based Systems
    Affected: 10 Version 1607 for 32-bit Systems
    Affected: 10 Version 1607 for x64-based Systems
    Affected: 10 Version 1703 for 32-bit Systems
    Affected: 10 Version 1703 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:06:31.661Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1130"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1130",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T16:07:17.936419Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-05-23",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1130"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:32.799Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1130"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-05-23T00:00:00.000Z",
                "value": "CVE-2019-1130 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2012"
                },
                {
                  "status": "affected",
                  "version": "2012 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2012 R2"
                },
                {
                  "status": "affected",
                  "version": "2012 R2 (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "2016"
                },
                {
                  "status": "affected",
                  "version": "2016  (Core installation)"
                },
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                }
              ]
            },
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "8.1 for x64-based systems"
                },
                {
                  "status": "affected",
                  "version": "RT 8.1"
                },
                {
                  "status": "affected",
                  "version": "10 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1607 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1129."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-07-29T14:13:22.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1130"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1130",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "2012"
                              },
                              {
                                "version_value": "2012 (Core installation)"
                              },
                              {
                                "version_value": "2012 R2"
                              },
                              {
                                "version_value": "2012 R2 (Core installation)"
                              },
                              {
                                "version_value": "2016"
                              },
                              {
                                "version_value": "2016  (Core installation)"
                              },
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "8.1 for x64-based systems"
                              },
                              {
                                "version_value": "RT 8.1"
                              },
                              {
                                "version_value": "10 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1607 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1129."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1130",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1130"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1130",
        "datePublished": "2019-07-29T14:13:22.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:32.799Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-1129 (GCVE-0-2019-1129)

    Vulnerability from cvelistv5 – Published: 2019-07-29 14:13 – Updated: 2025-10-21 23:45
    VLAI CISA KEVIntel
    Summary
    An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1130.
    SSVC
    Exploitation: active Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows Affected: 10 Version 1703 for 32-bit Systems
    Affected: 10 Version 1703 for x64-based Systems
    Affected: 10 Version 1709 for 32-bit Systems
    Affected: 10 Version 1709 for x64-based Systems
    Affected: 10 Version 1803 for 32-bit Systems
    Affected: 10 Version 1803 for x64-based Systems
    Affected: 10 Version 1803 for ARM64-based Systems
    Affected: 10 Version 1809 for 32-bit Systems
    Affected: 10 Version 1809 for x64-based Systems
    Affected: 10 Version 1809 for ARM64-based Systems
    Affected: 10 Version 1709 for ARM64-based Systems
    Create a notification for this product.
    Microsoft Windows Server Affected: version 1803 (Core Installation)
    Affected: 2019
    Affected: 2019 (Core installation)
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for 32-bit Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for x64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows 10 Version 1903 for ARM64-based Systems Affected: unspecified
    Create a notification for this product.
    Microsoft Windows Server, version 1903 (Server Core installation) Affected: unspecified
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T18:06:31.656Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1129"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2019-1129",
                    "options": [
                      {
                        "Exploitation": "active"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-07T16:15:56.335080Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              },
              {
                "other": {
                  "content": {
                    "dateAdded": "2022-03-15",
                    "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1129"
                  },
                  "type": "kev"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-59",
                    "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-21T23:45:32.929Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "government-resource"
                ],
                "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1129"
              }
            ],
            "timeline": [
              {
                "lang": "en",
                "time": "2022-03-15T00:00:00.000Z",
                "value": "CVE-2019-1129 added to CISA KEV"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Windows",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "10 Version 1703 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1703 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1803 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for 32-bit Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for x64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1809 for ARM64-based Systems"
                },
                {
                  "status": "affected",
                  "version": "10 Version 1709 for ARM64-based Systems"
                }
              ]
            },
            {
              "product": "Windows Server",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "version 1803  (Core Installation)"
                },
                {
                  "status": "affected",
                  "version": "2019"
                },
                {
                  "status": "affected",
                  "version": "2019  (Core installation)"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for 32-bit Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for x64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows 10 Version 1903 for ARM64-based Systems",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            },
            {
              "product": "Windows Server, version 1903 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "unspecified"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1130."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-07-29T14:13:14.000Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1129"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@microsoft.com",
              "ID": "CVE-2019-1129",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Windows",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10 Version 1703 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1703 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1803 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for 32-bit Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for x64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1809 for ARM64-based Systems"
                              },
                              {
                                "version_value": "10 Version 1709 for ARM64-based Systems"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "version 1803  (Core Installation)"
                              },
                              {
                                "version_value": "2019"
                              },
                              {
                                "version_value": "2019  (Core installation)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for 32-bit Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for x64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows 10 Version 1903 for ARM64-based Systems",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Windows Server, version 1903 (Server Core installation)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": ""
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Microsoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka \u0027Windows Elevation of Privilege Vulnerability\u0027. This CVE ID is unique from CVE-2019-1130."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Elevation of Privilege"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1129",
                  "refsource": "MISC",
                  "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1129"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2019-1129",
        "datePublished": "2019-07-29T14:13:14.000Z",
        "dateReserved": "2018-11-26T00:00:00.000Z",
        "dateUpdated": "2025-10-21T23:45:32.929Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }