CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-1524

An elevation of privilege vulnerability exists when the Windows Speech Shell Components improperly handle memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The security update addresses the vulnerability by correcting how the Windows Speech Shell Components handle memory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.1%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.6

References

Products affected by CVE-2020-1524

Microsoft » Windows 10 » Version: 1803

cpe:2.3:o:microsoft:windows_10:1803
Microsoft » Windows 10 » Version: 1809

cpe:2.3:o:microsoft:windows_10:1809
Microsoft » Windows 10 » Version: 1903

cpe:2.3:o:microsoft:windows_10:1903
Microsoft » Windows 10 » Version: 1909

cpe:2.3:o:microsoft:windows_10:1909
Microsoft » Windows 10 » Version: 2004

cpe:2.3:o:microsoft:windows_10:2004
Microsoft » Windows Server 2016 » Version: 1903

cpe:2.3:o:microsoft:windows_server_2016:1903
Microsoft » Windows Server 2016 » Version: 1909

cpe:2.3:o:microsoft:windows_server_2016:1909
Microsoft » Windows Server 2016 » Version: 2004

cpe:2.3:o:microsoft:windows_server_2016:2004
Microsoft » Windows Server 2019 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2019:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-1524

Products

Pricing

Contact Us