CVE-2020-1579

Sažetak

An elevation of privilege vulnerability exists when the Windows Function Discovery SSDP Provider improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The security update addresses the vulnerability by correcting how the Windows Function Discovery SSDP Provider handles memory.

Reference

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1579
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1579

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

23-02-2026 - 18:25

Objavljeno

17-08-2020 - 19:15