<p>An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory.</p> <p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.</p> <p>The security update addresses the vulnerability by correcting how the Windows RSoP Service Application handles memory.</p>
2020-09-11T17:15:13.057
2024-11-21T04:53:55.620
Modified
CVSSv3.1: 7.8 (HIGH)
AV:L/AC:L/Au:N/C:P/I:P/A:P
3.9
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | microsoft | windows_10 | 1607 | Yes |
| Operating System | microsoft | windows_10 | 1607 | Yes |
| Operating System | microsoft | windows_10 | 1709 | Yes |
| Operating System | microsoft | windows_10 | 1803 | Yes |
| Operating System | microsoft | windows_10 | 1809 | Yes |
| Operating System | microsoft | windows_10 | 1903 | Yes |
| Operating System | microsoft | windows_10 | 1909 | Yes |
| Operating System | microsoft | windows_10 | 2004 | Yes |
| Operating System | microsoft | windows_7 | - | Yes |
| Operating System | microsoft | windows_7 | - | Yes |
| Operating System | microsoft | windows_8.1 | - | Yes |
| Operating System | microsoft | windows_8.1 | - | Yes |
| Operating System | microsoft | windows_rt_8.1 | - | Yes |
| Operating System | microsoft | windows_server_2008 | - | Yes |
| Operating System | microsoft | windows_server_2008 | - | Yes |
| Operating System | microsoft | windows_server_2012 | - | Yes |
| Operating System | microsoft | windows_server_2012 | r2 | Yes |
| Operating System | microsoft | windows_server_2016 | - | Yes |
| Operating System | microsoft | windows_server_2016 | 1903 | Yes |
| Operating System | microsoft | windows_server_2016 | 1909 | Yes |
| Operating System | microsoft | windows_server_2016 | 2004 | Yes |
| Operating System | microsoft | windows_server_2019 | - | Yes |