CVE-2020-1698511.11.2020, 07:15Azure Sphere Information Disclosure VulnerabilityEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST6.2 MEDIUMLOCALLOWNONECVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NmicrosoftCNA6.2 MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:CCVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 64%VendorProductVersionmicrosoftazure_sphere𝑥< 20.09𝑥= Vulnerable software versionsKnown Exploits!https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1130https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1130Common Weakness EnumerationCWE-908 - Use of Uninitialized ResourceThe software uses or accesses a resource that has not been initialized.Referenceshttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16985https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1130https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16985https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1130