vulnerability
Microsoft Windows: CVE-2020-1212: OLE Automation Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Jun 9, 2020 | Jun 9, 2020 | Sep 5, 2025 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Jun 9, 2020
Added
Jun 9, 2020
Modified
Sep 5, 2025
Description
An elevation of privilege vulnerability exists when an OLE Automation component improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'OLE Automation Elevation of Privilege Vulnerability'.
Solutions
microsoft-windows-windows_10-1507-kb4561649microsoft-windows-windows_10-1607-kb4561616microsoft-windows-windows_10-1709-kb4561602microsoft-windows-windows_10-1803-kb4561621microsoft-windows-windows_10-1809-kb4561608microsoft-windows-windows_10-1903-kb4560960microsoft-windows-windows_10-1909-kb4560960microsoft-windows-windows_10-2004-kb4557957microsoft-windows-windows_server_2012-kb4561674microsoft-windows-windows_server_2012_r2-kb4561673microsoft-windows-windows_server_2016-1607-kb4561616microsoft-windows-windows_server_2019-1809-kb4561608msft-kb4557957-abd03b60-058d-4d8e-92d8-350e56c295admsft-kb4560960-35eeaed4-c0c0-436f-a584-b58f31a89642msft-kb4560960-ad75f2bc-0622-4a84-a93d-bb94fe8cff13msft-kb4561645-33a84b60-aa68-459f-8c82-b0ec0e7603d0msft-kb4561645-9405168a-4c68-4bfb-83ca-a15f4c9c374emsft-kb4561669-213200ca-9575-4f35-81e4-b19d61a9e4bamsft-kb4561669-5a0005ba-6430-4407-934f-03a3a5f26345msft-kb4561669-73f7aadb-bd02-4175-8265-f9bbaf0f22d2msft-kb4561669-8705c735-cea8-4ab0-9f52-7a200a211a6dmsft-kb4561669-cac41ed7-f500-4c34-8f26-3fc87b9a9d49msft-kb4561673-2abed83b-4909-457d-a57c-1850ed986c83msft-kb4561673-912dce3d-0621-4c74-91fe-e7a5f370435bmsft-kb4561674-033891fc-1d72-47e7-9c01-566ae179b26bmsft-kb4561674-e8efd911-36d9-486a-8584-1630576ce0db
References
- CVE-2020-1212
- https://attackerkb.com/topics/CVE-2020-1212
- https://support.microsoft.com/help/4557957
- https://support.microsoft.com/help/4560960
- https://support.microsoft.com/help/4561602
- https://support.microsoft.com/help/4561608
- https://support.microsoft.com/help/4561616
- https://support.microsoft.com/help/4561621
- https://support.microsoft.com/help/4561649
- https://support.microsoft.com/help/4561673
- https://support.microsoft.com/help/4561674
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.