An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application to take control of an affected system.
The update addresses the vulnerability by correcting how the Windows kernel handles objects in memory.
Metrics
Affected Vendors & Products
References
History
Mon, 18 Nov 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: microsoft
Published: 2020-08-17T19:13:10
Updated: 2024-11-18T16:43:36.690Z
Reserved: 2019-11-04T00:00:00
Link: CVE-2020-1486
Vulnrichment
Updated: 2024-08-04T06:39:10.353Z
NVD
Status : Modified
Published: 2020-08-17T19:15:15.867
Modified: 2024-11-21T05:10:39.763
Link: CVE-2020-1486
Redhat
No data.