vulnerability
Microsoft Windows: CVE-2020-0938: Adobe Font Manager Library Remote Code Execution Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Apr 14, 2020 | Jun 9, 2020 | Sep 5, 2025 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Apr 14, 2020
Added
Jun 9, 2020
Modified
Sep 5, 2025
Description
A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Adobe Font Manager Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1020.
Solutions
microsoft-windows-windows_10-1507-kb4550930microsoft-windows-windows_10-1607-kb4550929microsoft-windows-windows_10-1709-kb4550927microsoft-windows-windows_10-1803-kb4550922microsoft-windows-windows_10-1809-kb4549949microsoft-windows-windows_10-1903-kb4549951microsoft-windows-windows_10-1909-kb4549951microsoft-windows-windows_server_2012-kb4550971microsoft-windows-windows_server_2012_r2-kb4550970microsoft-windows-windows_server_2016-1607-kb4550929microsoft-windows-windows_server_2019-1809-kb4549949msft-kb4549951-2c147fa0-75e3-43bc-b66f-ff5f52710898msft-kb4549951-9592242f-824e-481f-86e5-c4619b82a75amsft-kb4550957-bc71ed69-f704-40e2-8dfe-97bfc967e6c9msft-kb4550957-d19ce11d-44bd-44a5-aacc-afb64343af8dmsft-kb4550965-572babde-d3e3-454e-9488-f86e12f07588msft-kb4550965-9802643b-b47f-42f1-bca8-c670f82994f5msft-kb4550965-b619fb0c-88d9-43a0-a4c5-ffb1fbda3869msft-kb4550965-bdeb0c04-57af-4782-aae0-d4db8e69f56emsft-kb4550965-e6e05026-aef3-41e6-8e3b-bcb99a3bc04bmsft-kb4550970-36a9a48b-df14-4648-8140-0deb8eb38850msft-kb4550970-ee987465-1440-44a6-9ca8-60559f19a29bmsft-kb4550971-aece0c9b-dc91-4671-84d5-9d781518a65emsft-kb4550971-ce089069-2039-40b7-9812-d3a7287ed968
References
- CVE-2020-0938
- https://attackerkb.com/topics/CVE-2020-0938
- CWE-787
- https://support.microsoft.com/help/4549949
- https://support.microsoft.com/help/4549951
- https://support.microsoft.com/help/4550922
- https://support.microsoft.com/help/4550927
- https://support.microsoft.com/help/4550929
- https://support.microsoft.com/help/4550930
- https://support.microsoft.com/help/4550970
- https://support.microsoft.com/help/4550971
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.