Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2020-1561
HistoryAug 17, 2020 - 7:15 p.m.

CVE-2020-1561

2020-08-1719:15:00
NVD-CWE-noinfo
[email protected]
web.nvd.nist.gov
94
cve-2020-1561
remote code execution
microsoft graphics components
memory handling
nvd

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.076 Low

EPSS

Percentile

94.1%

JSON

A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.
To exploit the vulnerability, a user would have to open a specially crafted file.
The security update addresses the vulnerability by correcting how Microsoft Graphics Components handle objects in memory.

VendorProductVersionCPE
microsoftwindows_10_200410.0.0cpe:2.3:o:microsoft:windows_10_2004:10.0.0:*:*:*:*:*:*:*
microsoftwindows_server_version_200410.0.0cpe:2.3:o:microsoft:windows_server_version_2004:10.0.0:*:*:*:*:*:*:*
microsoftwindows_10_180310.0.0cpe:2.3:o:microsoft:windows_10_1803:10.0.0:*:*:*:*:*:*:*
microsoftwindows_10_180910.0.0cpe:2.3:o:microsoft:windows_10_1809:10.0.0:*:*:*:*:*:*:*
microsoftwindows_server_201910.0.0cpe:2.3:o:microsoft:windows_server_2019:10.0.0:*:*:*:*:*:*:*
microsoftwindows_server_201910.0.0cpe:2.3:o:microsoft:windows_server_2019:10.0.0:*:*:*:*:*:*:*
microsoftwindows_10_190910.0.0cpe:2.3:o:microsoft:windows_10_1909:10.0.0:*:*:*:*:*:*:*
microsoftwindows_server,_version_190910.0.0cpe:2.3:o:microsoft:windows_server,_version_1909:10.0.0:*:*:*:*:*:*:*
microsoftwindows_10_1709 for 32-bit systems10.0.0cpe:2.3:o:microsoft:windows_10_1709 for 32-bit systems:10.0.0:*:*:*:*:*:*:*
microsoftwindows_10_170910.0.0cpe:2.3:o:microsoft:windows_10_1709:10.0.0:*:*:*:*:*:*:*
Rows per page:
1-10 of 181

Related

cnvd 1
mscve 1
prion 1
zdi 1
nessus 7
mskb 7
openvas 7
kaspersky 1
avleonov 1
cnvd
cnvd
Microsoft Windows/Windows Server Remote Code Execution Vulnerability (CNVD-2021-65601)
2020-08-13 00:00:00
mscve
mscve
Microsoft Graphics Components Remote Code Execution Vulnerability
2020-08-11 07:00:00
prion
prion
Remote code execution
2020-08-17 19:15:00
zdi
zdi
Microsoft Windows fontdrvhost Font Parsing Use-After-Free Remote Code Execution Vulnerability
2020-08-14 00:00:00
nessus
nessus
KB4571694: Windows 10 Version 1607 and Windows Server 2016 August 2020 Security Update
2020-08-11 00:00:00
KB4571692: Windows 10 August 2020 Security Update
2020-08-11 00:00:00
KB4565349: Windows 10 Version 1809 and Windows Server 2019 August 2020 Security Update
2020-08-11 00:00:00
mskb
mskb
August 11, 2020—KB4571692 (OS Build 10240.18666)
2020-08-11 07:00:00
August 11, 2020—KB4571741 (OS Build 16299.2045)
2020-08-11 07:00:00
August 11, 2020—KB4571709 (OS Build 17134.1667)
2020-08-11 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4571692)
2020-08-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4571741)
2020-08-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4571694)
2020-08-12 00:00:00
kaspersky
kaspersky
KLA11931 Multiple vulnerabilities in Microsoft Windows
2020-08-11 00:00:00
avleonov
avleonov
Microsoft Patch Tuesday August 2020: vulnerabilities with Detected Exploitation, useful for phishing and others
2020-08-30 22:13:56

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.076 Low

EPSS

Percentile

94.1%

JSON
Related for CVE-2020-1561
cnvd1mscve1prion1zdi1nessus7mskb7openvas7kaspersky1avleonov1