Количество 4
Количество 4

CVE-2020-0875
<p>An information disclosure vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system (low-integrity to medium-integrity).</p> <p>This vulnerability by itself does not allow arbitrary code execution; however, it could allow arbitrary code to be run if the attacker uses it in combination with another vulnerability (such as a remote code execution vulnerability or another elevation of privilege vulnerability) that is capable of leveraging the elevated privileges when code execution is attempted.</p> <p>The security update addresses the vulnerability by ensuring splwow64.exe properly handles these calls.</p>

CVE-2020-0875
Microsoft splwow64 Information Disclosure Vulnerability
GHSA-fqx6-v4f3-6f2w
An information disclosure vulnerability exists in how splwow64.exe handles certain calls, aka 'Microsoft splwow64 Information Disclosure Vulnerability'.

BDU:2020-04366
Уязвимость исполняемого файла splwow64.exe операционных систем Microsoft Windows, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
---|---|---|---|---|
![]() | CVE-2020-0875 <p>An information disclosure vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system (low-integrity to medium-integrity).</p> <p>This vulnerability by itself does not allow arbitrary code execution; however, it could allow arbitrary code to be run if the attacker uses it in combination with another vulnerability (such as a remote code execution vulnerability or another elevation of privilege vulnerability) that is capable of leveraging the elevated privileges when code execution is attempted.</p> <p>The security update addresses the vulnerability by ensuring splwow64.exe properly handles these calls.</p> | CVSS3: 5.5 | 22% Средний | почти 5 лет назад |
![]() | CVE-2020-0875 Microsoft splwow64 Information Disclosure Vulnerability | CVSS3: 5.5 | 22% Средний | почти 5 лет назад |
GHSA-fqx6-v4f3-6f2w An information disclosure vulnerability exists in how splwow64.exe handles certain calls, aka 'Microsoft splwow64 Information Disclosure Vulnerability'. | CVSS3: 5.5 | 22% Средний | около 3 лет назад | |
![]() | BDU:2020-04366 Уязвимость исполняемого файла splwow64.exe операционных систем Microsoft Windows, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 5.5 | 22% Средний | почти 5 лет назад |
Уязвимостей на страницу