vulnerability
Microsoft Windows: CVE-2020-1292: OpenSSH for Windows Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Jun 9, 2020 | Jun 9, 2020 | Sep 5, 2025 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Jun 9, 2020
Added
Jun 9, 2020
Modified
Sep 5, 2025
Description
An elevation of privilege vulnerability exists in OpenSSH for Windows when it does not properly restrict access to configuration settings, aka 'OpenSSH for Windows Elevation of Privilege Vulnerability'.
Solutions
microsoft-windows-windows_10-1803-kb4561621microsoft-windows-windows_10-1809-kb4561608microsoft-windows-windows_10-1903-kb4560960microsoft-windows-windows_10-1909-kb4560960microsoft-windows-windows_10-2004-kb4557957microsoft-windows-windows_server_2019-1809-kb4561608msft-kb4557957-abd03b60-058d-4d8e-92d8-350e56c295admsft-kb4560960-35eeaed4-c0c0-436f-a584-b58f31a89642msft-kb4560960-ad75f2bc-0622-4a84-a93d-bb94fe8cff13
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.