vulnerability
Microsoft Windows: CVE-2020-1302: Windows Installer Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | 2020-06-09 | 2020-06-09 | 2024-09-11 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
2020-06-09
Added
2020-06-09
Modified
2024-09-11
Description
An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1272, CVE-2020-1277, CVE-2020-1312.
Solution(s)
microsoft-windows-windows_10-1507-kb4561649microsoft-windows-windows_10-1607-kb4561616microsoft-windows-windows_10-1709-kb4561602microsoft-windows-windows_10-1803-kb4561621microsoft-windows-windows_10-1809-kb4561608microsoft-windows-windows_10-1903-kb4560960microsoft-windows-windows_10-1909-kb4560960microsoft-windows-windows_10-2004-kb4557957microsoft-windows-windows_server_2012-kb4561674microsoft-windows-windows_server_2012_r2-kb4561673microsoft-windows-windows_server_2016-1607-kb4561616microsoft-windows-windows_server_2019-1809-kb4561608msft-kb4557957-abd03b60-058d-4d8e-92d8-350e56c295admsft-kb4560960-35eeaed4-c0c0-436f-a584-b58f31a89642msft-kb4560960-ad75f2bc-0622-4a84-a93d-bb94fe8cff13msft-kb4561645-33a84b60-aa68-459f-8c82-b0ec0e7603d0msft-kb4561645-9405168a-4c68-4bfb-83ca-a15f4c9c374emsft-kb4561669-213200ca-9575-4f35-81e4-b19d61a9e4bamsft-kb4561669-5a0005ba-6430-4407-934f-03a3a5f26345msft-kb4561669-73f7aadb-bd02-4175-8265-f9bbaf0f22d2msft-kb4561669-8705c735-cea8-4ab0-9f52-7a200a211a6dmsft-kb4561669-cac41ed7-f500-4c34-8f26-3fc87b9a9d49msft-kb4561673-2abed83b-4909-457d-a57c-1850ed986c83msft-kb4561673-912dce3d-0621-4c74-91fe-e7a5f370435bmsft-kb4561674-033891fc-1d72-47e7-9c01-566ae179b26bmsft-kb4561674-e8efd911-36d9-486a-8584-1630576ce0db
References
- CVE-2020-1302
- https://attackerkb.com/topics/CVE-2020-1302
- URL-https://support.microsoft.com/help/4557957
- URL-https://support.microsoft.com/help/4560960
- URL-https://support.microsoft.com/help/4561602
- URL-https://support.microsoft.com/help/4561608
- URL-https://support.microsoft.com/help/4561616
- URL-https://support.microsoft.com/help/4561621
- URL-https://support.microsoft.com/help/4561649
- URL-https://support.microsoft.com/help/4561673
- URL-https://support.microsoft.com/help/4561674
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.