Unrated severityNVD Advisory· Published May 21, 2020· Updated Aug 4, 2024

CVE-2020-1066

Description

An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level.To exploit the vulnerability, an attacker would first have to access the local machine, and then run a malicious program.The update addresses the vulnerability by correcting how .NET Framework activates COM objects., aka '.NET Framework Elevation of Privilege Vulnerability'.

Affected products

Microsoft/.net Frameworkllm-fuzzy
Microsoft/Microsoft .NET Frameworkcpe-rescue2 versions
Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2+ 1 more
- (no CPE)range: Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2
- (no CPE)range: Windows 7 for 32-bit Systems Service Pack 1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1066mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.026
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000