Описание
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, bypass security restrictions, execute arbitrary code.
Below is a complete list of vulnerabilities:
- An elevation of privilege vulnerability in Windows Cloud Files Mini Filter Driver can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Backup Engine can be exploited remotely to gain privileges.
- An information disclosure vulnerability in Windows SMB can be exploited remotely to obtain sensitive information.
- A security feature bypass vulnerability in Windows Lock Screen can be exploited remotely to bypass security restrictions.
- An information disclosure vulnerability in Windows GDI+ can be exploited remotely to obtain sensitive information.
- An elevation of privilege vulnerability in Windows Digital Media Receiver can be exploited remotely to gain privileges.
- A remote code execution vulnerability in Windows NTFS can be exploited remotely to execute arbitrary code.
- A remote code execution vulnerability in Hyper-V can be exploited remotely to execute arbitrary code.
- An information disclosure vulnerability in Windows Error Reporting can be exploited remotely to obtain sensitive information.
- An elevation of privilege vulnerability in Windows Network Connections Service can be exploited remotely to gain privileges.
- A security feature bypass vulnerability in Windows Overlay Filter can be exploited remotely to bypass security restrictions.
- An elevation of privilege vulnerability in DirectX Graphics Kernel can be exploited remotely to gain privileges.
- A security feature bypass vulnerability in Kerberos can be exploited remotely to bypass security restrictions.
Первичный источник обнаружения
- CVE-2020-17103
CVE-2020-16964
CVE-2020-16960
CVE-2020-17140
CVE-2020-16962
CVE-2020-16963
CVE-2020-16961
CVE-2020-17099
CVE-2020-17098
CVE-2020-17097
CVE-2020-17096
CVE-2020-17095
CVE-2020-17094
CVE-2020-17092
CVE-2020-17138
CVE-2020-17139
CVE-2020-17134
CVE-2020-17136
CVE-2020-17137
CVE-2020-16996
CVE-2020-16959
CVE-2020-16958
ADV200013
Эксплуатация
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Связанные продукты
- Microsoft-Windows
- Microsoft-Windows-Server
- Microsoft-Windows-Server-2012
- Microsoft-Windows-8
- Microsoft-Windows-7
- Microsoft-Windows-Server-2008
- Windows-RT
- Microsoft-Windows-10
Список CVE
- CVE-2020-17103 high
- CVE-2020-16964 critical
- CVE-2020-16960 critical
- CVE-2020-17140 critical
- CVE-2020-16962 critical
- CVE-2020-16963 critical
- CVE-2020-16961 critical
- CVE-2020-17099 high
- CVE-2020-17098 high
- CVE-2020-17097 warning
- CVE-2020-17096 critical
- CVE-2020-17095 critical
- CVE-2020-17094 high
- CVE-2020-17092 critical
- CVE-2020-17138 high
- CVE-2020-17139 critical
- CVE-2020-17134 critical
- CVE-2020-17136 critical
- CVE-2020-17137 critical
- CVE-2020-16996 high
- CVE-2020-16959 critical
- CVE-2020-16958 critical
Список KB
- 4592449
- 4592440
- 4592438
- 4592484
- 4593226
- 4592495
- 4592497
- 4592446
- 4592464
- 4592468
- 5000822
- 5000847
- 5000808
- 5000803
- 5000848
- 5000802
- 5000853
- 5000840
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!