An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.
To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.
The security update addresses the vulnerability by correcting how the Windows UPnP Device Host handles memory.
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1538 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: microsoft
Published: 2020-08-17T19:13:31
Updated: 2024-05-29T16:32:35.831Z
Reserved: 2019-11-04T00:00:00
Link: CVE-2020-1538
JSON object: View
NVD Information
Status : Modified
Published: 2020-08-17T19:15:18.787
Modified: 2024-01-19T00:15:16.333
Link: CVE-2020-1538
JSON object: View
Redhat Information
No data.
CWE