VULNERABILITY

Microsoft Windows: CVE-2020-1301: Windows SMB Authenticated Remote Code Execution Vulnerability

Try Surface Command Get a continuous 360° view of your attack surface
Back to Search

Microsoft Windows: CVE-2020-1301: Windows SMB Authenticated Remote Code Execution Vulnerability

Severity
7
CVSS
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Published
06/09/2020
Created
06/10/2020
Added
06/09/2020
Modified
09/11/2024

Description

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 (SMBv1) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'.

Solution(s)

  • microsoft-windows-windows_10-1507-kb4561649
  • microsoft-windows-windows_10-1607-kb4561616
  • microsoft-windows-windows_10-1709-kb4561602
  • microsoft-windows-windows_10-1803-kb4561621
  • microsoft-windows-windows_10-1809-kb4561608
  • microsoft-windows-windows_10-1903-kb4560960
  • microsoft-windows-windows_10-1909-kb4560960
  • microsoft-windows-windows_10-2004-kb4557957
  • microsoft-windows-windows_server_2012-kb4561674
  • microsoft-windows-windows_server_2012_r2-kb4561673
  • microsoft-windows-windows_server_2016-1607-kb4561616
  • microsoft-windows-windows_server_2019-1809-kb4561608
  • msft-kb4557957-abd03b60-058d-4d8e-92d8-350e56c295ad
  • msft-kb4560960-35eeaed4-c0c0-436f-a584-b58f31a89642
  • msft-kb4560960-ad75f2bc-0622-4a84-a93d-bb94fe8cff13
  • msft-kb4561645-33a84b60-aa68-459f-8c82-b0ec0e7603d0
  • msft-kb4561645-9405168a-4c68-4bfb-83ca-a15f4c9c374e
  • msft-kb4561669-213200ca-9575-4f35-81e4-b19d61a9e4ba
  • msft-kb4561669-5a0005ba-6430-4407-934f-03a3a5f26345
  • msft-kb4561669-73f7aadb-bd02-4175-8265-f9bbaf0f22d2
  • msft-kb4561669-8705c735-cea8-4ab0-9f52-7a200a211a6d
  • msft-kb4561669-cac41ed7-f500-4c34-8f26-3fc87b9a9d49
  • msft-kb4561673-2abed83b-4909-457d-a57c-1850ed986c83
  • msft-kb4561673-912dce3d-0621-4c74-91fe-e7a5f370435b
  • msft-kb4561674-033891fc-1d72-47e7-9c01-566ae179b26b
  • msft-kb4561674-e8efd911-36d9-486a-8584-1630576ce0db

References

View more

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;