CVE-2020-0621

EUVD-2020-2115
A security feature bypass vulnerability exists in Windows 10 when third party filters are called during a password update, aka 'Windows Security Feature Bypass Vulnerability'.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.4 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 39%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_server_2019
-
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
1709 (arm64, x64, x86)
KB4534276
1803 (arm64, x64, x86)
KB4534293
1809 (arm64, x64, x86)
KB4534273
Windows Server
1803 Server Core
KB4534293
Windows Server 2019
Server Core
KB4534273
Standard
KB4534273
Common Weakness Enumeration
References
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0621
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0621