Medium severity4.9NVD Advisory· Published Jul 14, 2020· Updated Jun 17, 2026
CVE-2020-1267
CVE-2020-1267
Description
This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request, aka 'Local Security Authority Subsystem Service Denial of Service Vulnerability'.
Affected products
15- Microsoft/Windows 10 Version 1903 for 32-bit Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1903 for ARM64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1903 for x64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1909 for 32-bit Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1909 for ARM64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1909 for x64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 2004 for 32-bit Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 2004 for ARM64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 2004 for x64-based Systemsv5Range: unspecified
- Range: 2019
- Microsoft/Windows Server, version 1903 (Server Core installation)v5Range: unspecified
- Microsoft/Windows Server, version 1909 (Server Core installation)v5Range: unspecified
- Microsoft/Windows Server, version 2004 (Server Core installation)v5Range: unspecified
Patches
Vulnerability mechanics
References
1- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1267nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.