New Search

Windows Registry Elevation of Privilege Vulnerability - CVE-2020-1377

oval:org.cisecurity:def:8108

An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system. A locally authenticated attacker could exploit this vulnerability by running a specially crafted application. The security update addresses the vulnerability by helping to ensure that the Windows Kernel API properly handles objects in memory.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 7
  • Microsoft Windows 8.1
  • Microsoft Windows 10
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2019
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2016
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2008 R2
Class:
vulnerability
Reference(s):
  • CVE-2020-1377
  • MSRC-CVE-2020-1377
  • KB4571719
  • KB4571746
  • KB4571702
  • KB4571723
  • KB4571692
  • KB4571694
  • KB4571741
  • KB4571709
  • KB4565349
  • KB4565351
Product(s):