Логотип exploitDog
bind:CVE-2020-1529
Консоль
Логотип exploitDog

exploitDog

bind:CVE-2020-1529

Количество 4

Количество 4

nvd логотип

CVE-2020-1529

почти 5 лет назад

An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and take control of an affected system. The update addresses the vulnerability by correcting how GDI handles objects in memory and by preventing instances of unintended user-mode privilege elevation.

CVSS3: 7.8
EPSS: Низкий
msrc логотип

CVE-2020-1529

около 5 лет назад

Windows GDI Elevation of Privilege Vulnerability

CVSS3: 7.8
EPSS: Низкий
github логотип

GHSA-m93c-j7hg-hwmj

около 3 лет назад

An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, aka 'Windows GDI Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1480.

CVSS3: 7.8
EPSS: Низкий
fstec логотип

BDU:2020-04165

около 5 лет назад

Уязвимость компонента Windows Graphics Device Interface операционной системы Windows, позволяющая нарушителю повысить свои привилегии

CVSS3: 7.8
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
nvd логотип
CVE-2020-1529

An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and take control of an affected system. The update addresses the vulnerability by correcting how GDI handles objects in memory and by preventing instances of unintended user-mode privilege elevation.

CVSS3: 7.8
1%
Низкий
почти 5 лет назад
msrc логотип
CVE-2020-1529

Windows GDI Elevation of Privilege Vulnerability

CVSS3: 7.8
1%
Низкий
около 5 лет назад
github логотип
GHSA-m93c-j7hg-hwmj

An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, aka 'Windows GDI Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1480.

CVSS3: 7.8
1%
Низкий
около 3 лет назад
fstec логотип
BDU:2020-04165

Уязвимость компонента Windows Graphics Device Interface операционной системы Windows, позволяющая нарушителю повысить свои привилегии

CVSS3: 7.8
1%
Низкий
около 5 лет назад

Уязвимостей на страницу