CVE Vulnerabilities

CVE-2020-1002

Published: Apr 15, 2020 | Modified: Sep 09, 2021
CVSS 3.x
7.1
HIGH
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
CVSS 2.x
6.6 MEDIUM
AV:L/AC:L/Au:N/C:N/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka Microsoft Defender Elevation of Privilege Vulnerability.

Affected Software

Name Vendor Start Version End Version
Windows_defender Microsoft - (including) - (including)

References