vulnerability
Microsoft Windows: CVE-2020-1277: Windows Installer Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | Jun 9, 2020 | Jun 9, 2020 | Sep 5, 2025 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
Jun 9, 2020
Added
Jun 9, 2020
Modified
Sep 5, 2025
Description
An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1272, CVE-2020-1302, CVE-2020-1312.
Solutions
microsoft-windows-windows_10-1809-kb4561608microsoft-windows-windows_10-1903-kb4560960microsoft-windows-windows_10-1909-kb4560960microsoft-windows-windows_10-2004-kb4557957microsoft-windows-windows_server_2019-1809-kb4561608msft-kb4557957-abd03b60-058d-4d8e-92d8-350e56c295admsft-kb4560960-35eeaed4-c0c0-436f-a584-b58f31a89642msft-kb4560960-ad75f2bc-0622-4a84-a93d-bb94fe8cff13
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.