vulnerability
Microsoft Windows: CVE-2020-0940: Windows Push Notification Service Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Apr 14, 2020 | Jun 9, 2020 | Sep 5, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Apr 14, 2020
Added
Jun 9, 2020
Modified
Sep 5, 2025
Description
An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1001, CVE-2020-1006, CVE-2020-1017.
Solutions
microsoft-windows-windows_10-1607-kb4550929microsoft-windows-windows_10-1709-kb4550927microsoft-windows-windows_10-1803-kb4550922microsoft-windows-windows_10-1809-kb4549949microsoft-windows-windows_10-1903-kb4549951microsoft-windows-windows_10-1909-kb4549951microsoft-windows-windows_server_2016-1607-kb4550929microsoft-windows-windows_server_2019-1809-kb4549949msft-kb4549951-2c147fa0-75e3-43bc-b66f-ff5f52710898msft-kb4549951-9592242f-824e-481f-86e5-c4619b82a75a
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.