vulnerability

Microsoft Windows: CVE-2020-1145: Windows GDI Information Disclosure Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
2	(AV:L/AC:L/Au:N/C:P/I:N/A:N)	May 12, 2020	Jun 9, 2020	Sep 3, 2025

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:N/A:N)

Published

May 12, 2020

Added

Jun 9, 2020

Modified

Sep 3, 2025

Description

An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, allowing an attacker to retrieve information from a targeted system, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0963, CVE-2020-1141, CVE-2020-1179.

Solutions

microsoft-windows-windows_10-1903-kb4556799microsoft-windows-windows_10-1909-kb4556799msft-kb4556799-2e69bf96-184c-46b9-8937-306e23bdb930msft-kb4556799-7f570c23-239e-430c-b403-391861eae9a3

References

CVE-2020-1145
https://attackerkb.com/topics/CVE-2020-1145
https://support.microsoft.com/help/4556799

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report