vulnerability
Microsoft CVE-2020-1066: .NET Framework Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | May 12, 2020 | May 12, 2020 | Jul 15, 2020 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
May 12, 2020
Added
May 12, 2020
Modified
Jul 15, 2020
Description
An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level.
To exploit the vulnerability, an attacker would first have to access the local machine, and then run a malicious program.
The update addresses the vulnerability by correcting how .NET Framework activates COM objects.
Solutions
msft-kb4552940-e6a89c29-5818-42a9-966c-34634ec9587fmsft-kb4552964-1d349c08-8649-4c0b-ace9-865b9e3f5119msft-kb4552964-6bbec13d-047b-4fd5-a976-e2bbb4fcd65emsft-kb4552964-a5a18262-a7ba-458a-aa4f-7d1994e51b0dmsft-kb4552965-1e70bfc2-2c52-42a7-bb4a-2a180493f0f6msft-kb4552965-388f2547-446f-42dc-ab5e-b6335df73bf9msft-kb4552965-5b06e8af-dc66-427f-b409-42c6ec398a31msft-kb4552965-647fdaf7-0618-4a6c-a3c4-af1076d92cc5msft-kb4552965-be482a78-7827-4657-a5be-65133363da0amsft-kb4552965-d2ef5e1c-f80f-4521-892c-c3c270525b33
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.