vulnerability
Microsoft Windows: CVE-2020-1014: Microsoft Windows Update Client Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Apr 14, 2020 | Jun 9, 2020 | Sep 5, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Apr 14, 2020
Added
Jun 9, 2020
Modified
Sep 5, 2025
Description
An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'.
Solutions
microsoft-windows-windows_10-1507-kb4550930microsoft-windows-windows_10-1607-kb4550929microsoft-windows-windows_10-1709-kb4550927microsoft-windows-windows_10-1803-kb4550922microsoft-windows-windows_10-1809-kb4549949microsoft-windows-windows_10-1903-kb4549951microsoft-windows-windows_10-1909-kb4549951microsoft-windows-windows_server_2012-kb4550971microsoft-windows-windows_server_2012_r2-kb4550970microsoft-windows-windows_server_2016-1607-kb4550929microsoft-windows-windows_server_2019-1809-kb4549949msft-kb4549951-2c147fa0-75e3-43bc-b66f-ff5f52710898msft-kb4549951-9592242f-824e-481f-86e5-c4619b82a75amsft-kb4550957-bc71ed69-f704-40e2-8dfe-97bfc967e6c9msft-kb4550957-d19ce11d-44bd-44a5-aacc-afb64343af8dmsft-kb4550965-572babde-d3e3-454e-9488-f86e12f07588msft-kb4550965-9802643b-b47f-42f1-bca8-c670f82994f5msft-kb4550965-b619fb0c-88d9-43a0-a4c5-ffb1fbda3869msft-kb4550965-bdeb0c04-57af-4782-aae0-d4db8e69f56emsft-kb4550965-e6e05026-aef3-41e6-8e3b-bcb99a3bc04bmsft-kb4550970-36a9a48b-df14-4648-8140-0deb8eb38850msft-kb4550970-ee987465-1440-44a6-9ca8-60559f19a29bmsft-kb4550971-aece0c9b-dc91-4671-84d5-9d781518a65emsft-kb4550971-ce089069-2039-40b7-9812-d3a7287ed968
References
- CVE-2020-1014
- https://attackerkb.com/topics/CVE-2020-1014
- CWE-269
- https://support.microsoft.com/help/4549949
- https://support.microsoft.com/help/4549951
- https://support.microsoft.com/help/4550922
- https://support.microsoft.com/help/4550927
- https://support.microsoft.com/help/4550929
- https://support.microsoft.com/help/4550930
- https://support.microsoft.com/help/4550970
- https://support.microsoft.com/help/4550971
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.