Lucene search
+L

15 matches found

ThreatPost
ThreatPost
added 2020/12/24 4:31 p.m.137 views

Windows Zero-Day Still Circulating After Faulty Fix

A high-severity Windows zero-day that could lead to complete desktop takeover remains dangerous after a “fix” from Microsoft failed to adequately patch it. The local privilege-escalation bug in Windows 8.1 and Windows 10 CVE-2020-0986 exists in the Print Spooler API. It could allow a local attack...

7.2CVSS1.1AI score0.15932EPSS
Exploits1References10
The Hacker News
The Hacker News
added 2020/12/24 9:1 a.m.281 views

Google Discloses Poorly-Patched, Now Unpatched, Windows 0-Day Bug

Google's Project Zero team has made public details of an improperly patched zero-day security vulnerability in Windows print spooler API that could be leveraged by a bad actor to execute arbitrary code. Details of the unpatched flaw were revealed publicly after Microsoft failed to rectify it with...

7.8CVSS8.3AI score0.15932EPSS
Exploits1
Securelist
Securelist
added 2020/09/02 10:0 a.m.309 views

Operation PowerFall: CVE-2020-0986 and variants

In August 2020, we published a blog post about Operation PowerFall. This targeted attack consisted of two zero-day exploits: a remote code execution exploit for Internet Explorer 11 and an elevation of privilege exploit targeting the latest builds of Windows 10. While we already described the...

7.2CVSS8.7AI score0.15932EPSS
Exploits0
Securelist
Securelist
added 2020/08/12 7:0 a.m.866 views

Internet Explorer and Windows zero-day exploits used in Operation PowerFall

Executive summary In May 2020, Kaspersky technologies prevented an attack on a South Korean company by a malicious script for Internet Explorer. Closer analysis revealed that the attack used a previously unknown full chain that consisted of two zero-day exploits: a remote code execution exploit f...

7.6CVSS8.5AI score0.86863EPSS
Exploits20
Check Point Advisories
Check Point Advisories
added 2020/06/16 12:0 a.m.4 views

Microsoft Windows Kernel Elevation of Privilege (CVE-2020-0986)

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs, view, change, or delete data, or create ne...

7.2CVSS3.1AI score0.15932EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/06/10 12:0 a.m.107 views

Microsoft Windows Multiple Vulnerabilities (KB4560960)

This host is missing a critical security update according to Microsoft KB4560960 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.3AI score0.59518EPSS
Exploits14References3
OpenVAS
OpenVAS
added 2020/06/10 12:0 a.m.90 views

Microsoft Windows Multiple Vulnerabilities (KB4561612)

This host is missing a critical security update according to Microsoft KB4561612 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.4AI score0.59518EPSS
Exploits2References3
NVD
NVD
added 2020/06/09 8:15 p.m.19 views

CVE-2020-0986

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269,...

7.8CVSS0.15932EPSS
Exploits0References3
Prion
Prion
added 2020/06/09 8:15 p.m.31 views

Privilege escalation

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-127...

6.8CVSS7.7AI score0.15932EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2020/06/09 8:15 p.m.28 views

Privilege escalation

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269,...

7.2CVSS7.5AI score0.15932EPSS
Exploits0References1Affected Software5
CVE
CVE
added 2020/06/09 7:43 p.m.264 views

CVE-2020-1275

Technical details for CVE-2020-1275 are not publicly available in the provided documents. Monitor for updates from official advisories; no confirmed affected products, impact, or remediation are stated here.

7.8CVSS7.7AI score0.00795EPSS
In wildExploits0References1Affected Software2
CVE
CVE
added 2020/06/09 7:43 p.m.1301 views

CVE-2020-0986

Technical details about CVE-2020-0986 are not publicly available in the provided connected documents. Please monitor for updates; current materials mention malware references in related EUVD entries but do not disclose affected products, vulnerable components, impact, or fixes.

7.8CVSS7.7AI score0.15932EPSS
In wildExploits0References3Affected Software17
Cvelist
Cvelist
added 2020/06/09 7:43 p.m.37 views

CVE-2020-0986

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269,...

7.8AI score0.15932EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2020/06/09 7:43 p.m.6 views

CVE-2020-0986

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269,...

7AI score0.15932EPSS
Exploits0References2
Circl
Circl
added 2020/05/20 4:44 p.m.16 views

CVE-2020-0986

creationtimestamp| type| source ---|---|--- 2020-05-20 16:44:14+00:00| seen| https://t.me/informationsecuritychannel/37956 2020-08-12 10:03:34+00:00| published-proof-of-concept| https://t.me/cKure/1816 2020-08-13 07:17:30+00:00| seen| MISP/ee40784a-dec9-4f4a-b95c-3d760d8a1e2a 2020-09-02...

7.8CVSS7.1AI score0.15932EPSS
Exploits0References17
Rows per page
Query Builder