CVE-2020-16895

EUVD-2020-8853

16.10.2020, 23:15

<p>An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash. An attacker who successfully exploited this vulnerability could delete a targeted file leading to an elevated status.</p>
<p>To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and take control of an affected system.</p>
<p>The security update addresses the vulnerability by correcting how Windows Error Reporting manager handles process crashes.</p>

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
microsoft	CNA	7.8 HIGH				CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 67%

Affected Products (NVD)

Vendor	Product	Version
microsoft	windows_server_2019	-

𝑥

= Vulnerable software versions

Windows Releases

Platform

Version

Windows 10

1803 (arm64, x64, x86)	KB4580330
1809 (arm64, x64, x86)	KB4577668
1903 (arm64, x64, x86)	KB4577671
1909 (arm64, x64, x86)	KB4577671
2004 (arm64, x64, x86)	KB4579311

Windows Server

1903 Server Core	KB4577671
1909 Server Core	KB4577671
2004 Server Core	KB4579311

Windows Server 2019

Server Core	KB4577668
Standard	KB4577668

Common Weakness Enumeration

CWE-755 - Improper Handling of Exceptional Conditions
The software does not handle or incorrectly handles an exceptional condition.

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16895