VYPR
Unrated severityNVD Advisory· Published Jul 14, 2020· Updated Aug 4, 2024

CVE-2020-1393

CVE-2020-1393

Description

An elevation of privilege vulnerability exists when the Windows Diagnostics Hub Standard Collector Service fails to properly sanitize input, leading to an unsecure library-loading behavior, aka 'Windows Diagnostics Hub Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1418.

Affected products

20
  • Range: 10 Version 1803 for 32-bit Systems
  • Range: 2015 Update 3
  • Microsoft/Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)v5
    Range: unspecified
  • Microsoft/Microsoft Visual Studio 2019v5
    Range: 16.0
  • Microsoft/Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)v5
    Range: unspecified
  • Microsoft/Microsoft Visual Studio 2019 version 16.6 (includes 16.0 - 16.5)v5
    Range: unspecified
  • Microsoft/Windows 10 Version 1903 for 32-bit Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 1903 for ARM64-based Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 1903 for x64-based Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 1909 for 32-bit Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 1909 for ARM64-based Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 1909 for x64-based Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 2004 for 32-bit Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 2004 for ARM64-based Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 2004 for x64-based Systemsv5
    Range: unspecified
  • Range: 2019
  • Microsoft/Windows Server, version 1903 (Server Core installation)v5
    Range: unspecified
  • Microsoft/Windows Server, version 1909 (Server Core installation)v5
    Range: unspecified
  • Microsoft/Windows Server, version 2004 (Server Core installation)v5
    Range: unspecified

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.