Lucene search

[email protected]CVE-2020-0942

HistoryApr 15, 2020 - 3:15 p.m.

CVE-2020-0942

2020-04-1515:15:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2020-0942

elevation of privilege

connected user experiences and telemetry service

file operations

vulnerability

nvd

7.1 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

7.2 High

AI Score

Confidence

High

3.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

8.9%

JSON

An elevation of privilege vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations, aka ‘Connected User Experiences and Telemetry Service Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2020-0944, CVE-2020-1029.

VendorProductVersionCPE
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::

Rows per page:

1-10 of 241

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0942

7.1 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

7.2 High

AI Score

Confidence

High

3.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

8.9%

JSON

Related for CVE-2020-0942

prion3 cve2 mscve3 openvas5 nessus5 mskb5 kaspersky1 avleonov1