CVE-2020-1375: An elevation of privilege vulnerability exists when Windows improperly handles COM object creation, aka 'Windows COM Server Elevation of Privilege…

high7.8CVSS 3.1

AVLACLPRLUINSUCHIHAH

An elevation of privilege vulnerability exists when Windows improperly handles COM object creation, aka 'Windows COM Server Elevation of Privilege Vulnerability'.

Affected

39 ranges· showing 25

Vendor	Product	Version range	Fixed in
microsoft	windows	—	—
microsoft	windows	—	—
microsoft	windows	—	—
microsoft	windows	—	—
microsoft	windows	—	—
microsoft	windows	—	—
microsoft	windows	—	—
microsoft	windows	—	—
microsoft	windows	—	—
microsoft	windows_10	—	—
microsoft	windows_10	—	—
microsoft	windows_10	—	—
microsoft	windows_10	—	—
microsoft	windows_10	—	—
microsoft	windows_10	—	—
microsoft	windows_10_version_1903_for_32-bit_systems	—	—
microsoft	windows_10_version_1903_for_arm64-based_systems	—	—
microsoft	windows_10_version_1903_for_x64-based_systems	—	—
microsoft	windows_10_version_1909_for_32-bit_systems	—	—
microsoft	windows_10_version_1909_for_arm64-based_systems	—	—
microsoft	windows_10_version_1909_for_x64-based_systems	—	—
microsoft	windows_10_version_2004_for_32-bit_systems	—	—
microsoft	windows_10_version_2004_for_arm64-based_systems	—	—
microsoft	windows_10_version_2004_for_x64-based_systems	—	—
microsoft	windows_server	—	—

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

vulncheck7.8HIGH