Lucene search

K

[email protected]NVD:CVE-2020-0792

HistoryFeb 11, 2020 - 10:15 p.m.

CVE-2020-0792

2020-02-1122:15:23

CWE-787

[email protected]

web.nvd.nist.gov

1

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

19.0%

An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka ‘Windows Graphics Component Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2020-0715, CVE-2020-0745.

Affected configurations

NVD

Node

microsoftwindows_10Match1903

OR

microsoftwindows_10Match1909

OR

microsoftwindows_server_2016Match1903

OR

microsoftwindows_server_2016Match1909

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0792

www.zerodayinitiative.com/advisories/ZDI-20-259/

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

19.0%

Related for NVD:CVE-2020-0792

nvd2 cve3 cvelist3 prion3 mscve3 checkpoint_advisories2 zdi1 nessus10 mskb14 openvas8 kaspersky2 talosblog1