CVE-2020-1112Unrestricted File Upload in Microsoft Windows

CWE-434Unrestricted File Upload5 documents5 sources
Severity
9.9CRITICALNVD
EPSS
1.4%
top 19.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
11
Microsoft WindowsMicrosoft Windows 10 Version 1903 FOR 32-bit SystemsMicrosoft Windows 10 Version 1903 FOR Arm64-based Systems+8 more
Timeline
PublishedMay 21
Latest updateMay 24

Description

An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) IIS module improperly handles uploaded content, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 3.1 | Impact: 6.0

Affected Packages10 packages

CVEListV5microsoft/windows18 versions+17
NVDmicrosoft/windows_106 versions+5

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-2p7m-73cj-2m99: An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) IIS module improperly handles uploaded2022-05-24
CVEList
CVE-2020-1112: An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) IIS module improperly handles uploaded2020-05-21

💥Exploits & PoCs

1
Exploit-DB
CloudMe 1.11.2 - Buffer Overflow ROP (DEP_ASLR)2020-09-29

📋Vendor Advisories

1
Microsoft
Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability2020-05-12
CVE-2020-1112 — Unrestricted File Upload in Microsoft | cvebase