CVE-2020-0981Incorrect Authorization in Microsoft Windows 10 Version 1903 FOR 32-bit Systems

CWE-863Incorrect AuthorizationCWE-74Injection10 documents6 sources
Severity
8.8HIGHNVD
EPSS
0.1%
top 73.35%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
16
Microsoft Windows 10 Version 1903 FOR 32-bit SystemsMicrosoft Windows 10 Version 1903 FOR Arm64-based SystemsMicrosoft Windows 10 Version 1903 FOR X64-based Systems+13 more
Timeline
PublishedApr 15
Latest updateMay 24

Description

A security feature bypass vulnerability exists when Windows fails to properly handle token relationships.An attacker who successfully exploited the vulnerability could allow an application with a certain integrity level to execute code at a different integrity level, leading to a sandbox escape.The update addresses the vulnerability by correcting how Windows handles token relationships, aka 'Windows Token Security Feature Bypass Vulnerability'.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 2.0 | Impact: 6.0

Affected Packages16 packages

NVDmicrosoft/windows1903, 1909+1
NVDmicrosoft/windows_101903, 1909+1

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-93vj-6w32-x9gc: A security feature bypass vulnerability exists when Windows fails to properly handle token relationships2022-05-24
Project0
You Won't Believe what this One Line Change Did to the Chrome Sandbox - Project Zero2020-04-01

📋Vendor Advisories

1
Microsoft
Windows Token Security Feature Bypass Vulnerability2020-04-14

🕵️Threat Intelligence

6
Talos
Microsoft Patch Tuesday — April 2020: Vulnerability disclosures and Snort coverage2020-04-14
Trendmicro
April Patch Tuesday: Fixes for Font-Related, Microsoft SharePoint, Windows Components Vulnerabilities2020-04-14
Trendmicro
April Patch Tuesday: Fixes for Font-Related, Microsoft SharePoint, Windows Components Vulnerabilities2020-04-14
Talos
Microsoft Patch Tuesday — April 2020: Vulnerability disclosures and Snort coverage2020-04-14
Trendmicro
April Patch Tuesday: Fixes for Font-Related, Microsoft SharePoint, Windows Components Vulnerabilities2020-04-14
CVE-2020-0981 — Incorrect Authorization in Microsoft | cvebase