Логотип exploitDog
bind:CVE-2020-0875
Консоль
Логотип exploitDog

exploitDog

bind:CVE-2020-0875

Количество 4

Количество 4

nvd логотип

CVE-2020-0875

почти 5 лет назад

<p>An information disclosure vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system (low-integrity to medium-integrity).</p> <p>This vulnerability by itself does not allow arbitrary code execution; however, it could allow arbitrary code to be run if the attacker uses it in combination with another vulnerability (such as a remote code execution vulnerability or another elevation of privilege vulnerability) that is capable of leveraging the elevated privileges when code execution is attempted.</p> <p>The security update addresses the vulnerability by ensuring splwow64.exe properly handles these calls.</p>

CVSS3: 5.5
EPSS: Средний
msrc логотип

CVE-2020-0875

почти 5 лет назад

Microsoft splwow64 Information Disclosure Vulnerability

CVSS3: 5.5
EPSS: Средний
github логотип

GHSA-fqx6-v4f3-6f2w

около 3 лет назад

An information disclosure vulnerability exists in how splwow64.exe handles certain calls, aka 'Microsoft splwow64 Information Disclosure Vulnerability'.

CVSS3: 5.5
EPSS: Средний
fstec логотип

BDU:2020-04366

почти 5 лет назад

Уязвимость исполняемого файла splwow64.exe операционных систем Microsoft Windows, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

CVSS3: 5.5
EPSS: Средний

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
nvd логотип
CVE-2020-0875

<p>An information disclosure vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system (low-integrity to medium-integrity).</p> <p>This vulnerability by itself does not allow arbitrary code execution; however, it could allow arbitrary code to be run if the attacker uses it in combination with another vulnerability (such as a remote code execution vulnerability or another elevation of privilege vulnerability) that is capable of leveraging the elevated privileges when code execution is attempted.</p> <p>The security update addresses the vulnerability by ensuring splwow64.exe properly handles these calls.</p>

CVSS3: 5.5
22%
Средний
почти 5 лет назад
msrc логотип
CVE-2020-0875

Microsoft splwow64 Information Disclosure Vulnerability

CVSS3: 5.5
22%
Средний
почти 5 лет назад
github логотип
GHSA-fqx6-v4f3-6f2w

An information disclosure vulnerability exists in how splwow64.exe handles certain calls, aka 'Microsoft splwow64 Information Disclosure Vulnerability'.

CVSS3: 5.5
22%
Средний
около 3 лет назад
fstec логотип
BDU:2020-04366

Уязвимость исполняемого файла splwow64.exe операционных систем Microsoft Windows, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

CVSS3: 5.5
22%
Средний
почти 5 лет назад

Уязвимостей на страницу