VULNERABILITY

Microsoft Windows: CVE-2020-0883: GDI+ Remote Code Execution Vulnerability

Try Surface Command Get a continuous 360° view of your attack surface
Back to Search

Microsoft Windows: CVE-2020-0883: GDI+ Remote Code Execution Vulnerability

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
03/10/2020
Created
03/11/2020
Added
03/10/2020
Modified
09/11/2024

Description

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0881.

Solution(s)

  • microsoft-windows-windows_10-1507-kb4540693
  • microsoft-windows-windows_10-1607-kb4540670
  • microsoft-windows-windows_10-1709-kb4540681
  • microsoft-windows-windows_10-1803-kb4540689
  • microsoft-windows-windows_10-1809-kb4538461
  • microsoft-windows-windows_10-1903-kb4540673
  • microsoft-windows-windows_10-1909-kb4540673
  • microsoft-windows-windows_server_2012-kb4540694
  • microsoft-windows-windows_server_2012_r2-kb4541505
  • microsoft-windows-windows_server_2016-1607-kb4540670
  • microsoft-windows-windows_server_2019-1809-kb4538461
  • msft-kb4540673-27a7325b-a765-4956-ab15-a19091b61221
  • msft-kb4540673-c13c3539-3ef4-481b-a305-d44fe74d2165
  • msft-kb4540694-24482d48-0407-4e23-b911-d5e04acb91e5
  • msft-kb4540694-c214d214-86c0-44d2-a9fe-1078a963bff4
  • msft-kb4541500-4246fbc4-1ade-426a-9467-c69bac322cec
  • msft-kb4541500-67cee5f9-77e2-42fa-a7da-e94d1634c7dc
  • msft-kb4541500-6dd3e0b6-c1cb-474e-918a-f3f78e4afaed
  • msft-kb4541500-8f93f69e-cc61-4099-b875-dde648ec083b
  • msft-kb4541500-a2d1fed7-33cf-4d26-a56b-bc3829d9ecd0
  • msft-kb4541504-ed28193d-fd63-49cf-9e10-48187deb378b
  • msft-kb4541504-ff272480-d240-4660-a01d-ee2c36aaed9d
  • msft-kb4541505-823cc33f-f5a7-46f1-b525-2d93e9833273
  • msft-kb4541505-e9e0fe16-c0c8-4a45-8696-f1746572cf0c

References

View more

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;