vulnerability
Microsoft Windows: CVE-2020-1286: Windows Shell Remote Code Execution Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | Jun 9, 2020 | Jun 9, 2020 | Sep 5, 2025 |
Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
Jun 9, 2020
Added
Jun 9, 2020
Modified
Sep 5, 2025
Description
A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths.An attacker who successfully exploited this vulnerability could run arbitrary code in the context of the current user, aka 'Windows Shell Remote Code Execution Vulnerability'.
Solutions
microsoft-windows-windows_10-1709-kb4561602microsoft-windows-windows_10-1803-kb4561621microsoft-windows-windows_10-1809-kb4561608microsoft-windows-windows_10-1903-kb4560960microsoft-windows-windows_10-1909-kb4560960microsoft-windows-windows_10-2004-kb4557957microsoft-windows-windows_server_2019-1809-kb4561608msft-kb4557957-abd03b60-058d-4d8e-92d8-350e56c295admsft-kb4560960-35eeaed4-c0c0-436f-a584-b58f31a89642msft-kb4560960-ad75f2bc-0622-4a84-a93d-bb94fe8cff13
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.