3 matches found
CVE-2020-1146 Microsoft Store Runtime Elevation of Privilege Vulnerability
...
CVE-2020-1146
CVE-2020-1146 is an elevation of privilege affecting the Microsoft Store Runtime, caused by improper memory handling. The vulnerability requires the attacker to gain code execution on the victim machine and then run a crafted application to elevate privileges. Microsoft addresses the issue via a ...
CVE-2020-0766
CVE-2020-0766 is an elevation-of-privilege vulnerability in the Microsoft Store Runtime caused by improper memory handling. An attacker would need remote execution on the target to run a crafted program that could escalate privileges locally; the issue is mitigated by a security update that corre...