vulnerability
Microsoft Windows: CVE-2020-0638: Update Notification Manager Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | Jan 14, 2020 | Jan 14, 2020 | Sep 5, 2025 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
Jan 14, 2020
Added
Jan 14, 2020
Modified
Sep 5, 2025
Description
An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Update Notification Manager Elevation of Privilege Vulnerability'.
Solutions
microsoft-windows-windows_10-1709-kb4534276microsoft-windows-windows_10-1803-kb4534293microsoft-windows-windows_10-1809-kb4534273microsoft-windows-windows_10-1903-kb4528760microsoft-windows-windows_10-1909-kb4528760microsoft-windows-windows_server_2019-1809-kb4534273msft-kb4528760-19558abd-f6b7-4b01-880a-e1ef9790a793msft-kb4528760-8fc18280-6925-4bd4-91c1-9c0f69b91e2e
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.