Windows CloudExperienceHost Elevation of Privilege Vulnerability - CVE-2020-1471
An elevation of privilege vulnerability exists when Microsoft Windows CloudExperienceHost fails to check COM objects. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system. To exploit the vulnerability an attacker would have to log on to an affected system and run a specially crafted script or application. The security update addresses the vulnerability by checking COM objects.
- Microsoft Windows Server 2016
- Microsoft Windows 10
- Microsoft Windows Server 2019