CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-1464

A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files. In an attack scenario, an attacker could bypass security features intended to prevent improperly signed files from being loaded. The update addresses the vulnerability by correcting how Windows validates file signatures.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.077

EPSS Ranking 91.4%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 2.1

Proposed Action

Microsoft Windows contains a spoofing vulnerability when Windows incorrectly validates file signatures, allowing an attacker to bypass security features and load improperly signed files.

Ransomware Campaign

Unknown

References

Products affected by CVE-2020-1464

Microsoft » Windows 10 1507 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1507:-
Microsoft » Windows 10 1607 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1607:-
Microsoft » Windows 10 1709 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1709:-
Microsoft » Windows 10 1803 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1803:-
Microsoft » Windows 10 1809 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1809:-
Microsoft » Windows 10 1903 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1903:-
Microsoft » Windows 10 1909 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1909:-
Microsoft » Windows 10 2004 » Version: N/A

cpe:2.3:o:microsoft:windows_10_2004:-
Microsoft » Windows 7 » Version: N/A

cpe:2.3:o:microsoft:windows_7:-
Microsoft » Windows 8.1 » Version: N/A

cpe:2.3:o:microsoft:windows_8.1:-
Microsoft » Windows Rt 8.1 » Version: N/A

cpe:2.3:o:microsoft:windows_rt_8.1:-
Microsoft » Windows Server 1903 » Version: N/A

cpe:2.3:o:microsoft:windows_server_1903:-
Microsoft » Windows Server 1909 » Version: N/A

cpe:2.3:o:microsoft:windows_server_1909:-
Microsoft » Windows Server 2004 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2004:-
Microsoft » Windows Server 2008 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2008:-
Microsoft » Windows Server 2008 » Version: r2

cpe:2.3:o:microsoft:windows_server_2008:r2
Microsoft » Windows Server 2012 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2012:-
Microsoft » Windows Server 2012 » Version: r2

cpe:2.3:o:microsoft:windows_server_2012:r2
Microsoft » Windows Server 2016 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2016:-
Microsoft » Windows Server 2019 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2019:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-1464

Products

Pricing

Contact Us