CVE-2020-1054
| CVE Published | 2020-05-21 |
|---|---|
| Related CWE(s) | CWE-787: Out-of-bounds Write |
| Related Vendor(s) | microsoft |
| Related Product(s) | windows_8.1, windows_server_2008, windows_server_2012, windows_10, windows_server_2019, windows_server_2016, windows_7, windows_rt_8.1 |
| Exploitation Reported (CISA KEV) | 2021-11-03 |
| CVSS 3 Base Score | 7.8 (HIGH) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | LOCAL |
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1143.
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph