vulnerability
Microsoft Windows: CVE-2020-1094: Windows Work Folder Service Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Apr 14, 2020 | Jun 9, 2020 | Sep 5, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Apr 14, 2020
Added
Jun 9, 2020
Modified
Sep 5, 2025
Description
An elevation of privilege vulnerability exists when the Windows Work Folder Service improperly handles file operations, aka 'Windows Work Folder Service Elevation of Privilege Vulnerability'.
Solutions
microsoft-windows-windows_10-1507-kb4550930microsoft-windows-windows_10-1607-kb4550929microsoft-windows-windows_10-1709-kb4550927microsoft-windows-windows_10-1803-kb4550922microsoft-windows-windows_10-1809-kb4549949microsoft-windows-windows_10-1903-kb4549951microsoft-windows-windows_10-1909-kb4549951microsoft-windows-windows_server_2012_r2-kb4550970microsoft-windows-windows_server_2016-1607-kb4550929microsoft-windows-windows_server_2019-1809-kb4549949msft-kb4549951-2c147fa0-75e3-43bc-b66f-ff5f52710898msft-kb4549951-9592242f-824e-481f-86e5-c4619b82a75amsft-kb4550965-572babde-d3e3-454e-9488-f86e12f07588msft-kb4550965-9802643b-b47f-42f1-bca8-c670f82994f5msft-kb4550965-b619fb0c-88d9-43a0-a4c5-ffb1fbda3869msft-kb4550965-bdeb0c04-57af-4782-aae0-d4db8e69f56emsft-kb4550965-e6e05026-aef3-41e6-8e3b-bcb99a3bc04bmsft-kb4550970-36a9a48b-df14-4648-8140-0deb8eb38850msft-kb4550970-ee987465-1440-44a6-9ca8-60559f19a29b
References
- CVE-2020-1094
- https://attackerkb.com/topics/CVE-2020-1094
- URL-https://support.microsoft.com/help/4549949
- URL-https://support.microsoft.com/help/4549951
- URL-https://support.microsoft.com/help/4550922
- URL-https://support.microsoft.com/help/4550927
- URL-https://support.microsoft.com/help/4550929
- URL-https://support.microsoft.com/help/4550930
- URL-https://support.microsoft.com/help/4550970
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.