CVE-2020-1330
Severity
5.5MEDIUM
EPSS
0.9%
top 24.63%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJul 14
Latest updateMay 24
Description
An information disclosure vulnerability exists when Windows Mobile Device Management (MDM) Diagnostics improperly handles junctions, aka 'Windows Mobile Device Management Diagnostics Information Disclosure Vulnerability'.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6
Affected Packages13 packages
▶CVEListV5microsoft/windows10 Version 1809 for 32-bit Systems, 10 Version 1809 for ARM64-based Systems, 10 Version 1809 for x64-based Systems+2
Patches
🔴Vulnerability Details
2GHSA▶
GHSA-ggrp-h575-7cxc: An information disclosure vulnerability exists when Windows Mobile Device Management (MDM) Diagnostics improperly handles junctions, aka 'Windows Mobi↗2022-05-24
CVEList▶
CVE-2020-1330: An information disclosure vulnerability exists when Windows Mobile Device Management (MDM) Diagnostics improperly handles junctions, aka 'Windows Mobi↗2020-07-14
💥Exploits & PoCs
1📋Vendor Advisories
1Microsoft
▶