vulnerability
Microsoft CVE-2020-1066: .NET Framework Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | 2020-05-12 | 2020-05-12 | 2020-07-15 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
2020-05-12
Added
2020-05-12
Modified
2020-07-15
Description
An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level.
To exploit the vulnerability, an attacker would first have to access the local machine, and then run a malicious program.
The update addresses the vulnerability by correcting how .NET Framework activates COM objects.
Solution(s)
msft-kb4552940-e6a89c29-5818-42a9-966c-34634ec9587fmsft-kb4552964-1d349c08-8649-4c0b-ace9-865b9e3f5119msft-kb4552964-6bbec13d-047b-4fd5-a976-e2bbb4fcd65emsft-kb4552964-a5a18262-a7ba-458a-aa4f-7d1994e51b0dmsft-kb4552965-1e70bfc2-2c52-42a7-bb4a-2a180493f0f6msft-kb4552965-388f2547-446f-42dc-ab5e-b6335df73bf9msft-kb4552965-5b06e8af-dc66-427f-b409-42c6ec398a31msft-kb4552965-647fdaf7-0618-4a6c-a3c4-af1076d92cc5msft-kb4552965-be482a78-7827-4657-a5be-65133363da0amsft-kb4552965-d2ef5e1c-f80f-4521-892c-c3c270525b33
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.