CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-1243

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application. The security update addresses the vulnerability by resolving the conditions where Hyper-V would fail to handle these requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.0%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.6

References

Products affected by CVE-2020-1243

Microsoft » Windows 10 » Version: 1607

cpe:2.3:o:microsoft:windows_10:1607
Microsoft » Windows 10 » Version: 1709

cpe:2.3:o:microsoft:windows_10:1709
Microsoft » Windows 10 » Version: 1803

cpe:2.3:o:microsoft:windows_10:1803
Microsoft » Windows 10 » Version: 1809

cpe:2.3:o:microsoft:windows_10:1809
Microsoft » Windows 10 » Version: 1903

cpe:2.3:o:microsoft:windows_10:1903
Microsoft » Windows 10 » Version: 2004

cpe:2.3:o:microsoft:windows_10:2004
Microsoft » Windows Server 2016 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2016:-
Microsoft » Windows Server 2016 » Version: 1903

cpe:2.3:o:microsoft:windows_server_2016:1903
Microsoft » Windows Server 2016 » Version: 1909

cpe:2.3:o:microsoft:windows_server_2016:1909
Microsoft » Windows Server 2016 » Version: 2004

cpe:2.3:o:microsoft:windows_server_2016:2004
Microsoft » Windows Server 2019 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2019:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-1243

Products

Pricing

Contact Us