vulnerability
Microsoft Windows: CVE-2020-16935: Windows COM Server Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Oct 13, 2020 | Oct 13, 2020 | Sep 5, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Oct 13, 2020
Added
Oct 13, 2020
Modified
Sep 5, 2025
Description
An elevation of privilege vulnerability exists when Windows improperly handles COM object creation, aka 'Windows COM Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-16916.
Solutions
microsoft-windows-windows_10-1507-kb4580327microsoft-windows-windows_10-1607-kb4580346microsoft-windows-windows_10-1709-kb4580328microsoft-windows-windows_10-1803-kb4580330microsoft-windows-windows_10-1809-kb4577668microsoft-windows-windows_10-1903-kb4577671microsoft-windows-windows_10-1909-kb4577671microsoft-windows-windows_10-2004-kb4579311microsoft-windows-windows_server_2012-kb4580353microsoft-windows-windows_server_2012_r2-kb4580358microsoft-windows-windows_server_2016-1607-kb4580346microsoft-windows-windows_server_2019-1809-kb4577668msft-kb4577671-c42dc613-fb5b-4c45-925c-4f508584a635msft-kb4577671-ddbf4c81-6ca7-4986-999e-9275ef508017msft-kb4579311-e9f0550d-b150-4eeb-bf5e-1a08b117e7afmsft-kb4580353-3e254f1d-7bf3-4f94-8817-a6eb0accedc0msft-kb4580353-59e7e42c-6434-4e0a-bd9f-b504d629f516msft-kb4580358-12cf7c4b-339c-47dc-a087-73a7a0dedf6fmsft-kb4580358-ef30fd6b-8580-4ec5-9190-5cdb4b02f438msft-kb4580385-47dabaa8-438f-49e7-9c31-2d481515c893msft-kb4580385-9f71bd2c-88f2-4c58-b86f-dd0b9b03cfe7msft-kb4580387-08d6fc97-597d-4b5b-8422-f4b57817b1c1msft-kb4580387-1473a3e5-0aa3-43a1-b213-cf3151e2c15emsft-kb4580387-5cef288f-a4e4-4cb7-86e0-ef3c89b43cedmsft-kb4580387-e92e01a4-761c-41f6-a9f6-5853bb7885c9msft-kb4580387-fc890b9e-e1d1-43af-b7f8-d42201cd24aa
References
- CVE-2020-16935
- https://attackerkb.com/topics/CVE-2020-16935
- https://support.microsoft.com/help/4577668
- https://support.microsoft.com/help/4577671
- https://support.microsoft.com/help/4579311
- https://support.microsoft.com/help/4580327
- https://support.microsoft.com/help/4580328
- https://support.microsoft.com/help/4580330
- https://support.microsoft.com/help/4580346
- https://support.microsoft.com/help/4580353
- https://support.microsoft.com/help/4580358
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.