High severity8.8NVD Advisory· Published Jul 14, 2020· Updated Jun 17, 2026
CVE-2020-1436
CVE-2020-1436
Description
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Windows Font Library Remote Code Execution Vulnerability'.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
15- Microsoft/Windows 10 Version 1903 for 32-bit Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1903 for ARM64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1903 for x64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1909 for 32-bit Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1909 for ARM64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1909 for x64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 2004 for 32-bit Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 2004 for ARM64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 2004 for x64-based Systemsv5Range: unspecified
- Range: 2019
- Microsoft/Windows Server, version 1903 (Server Core installation)v5Range: unspecified
- Microsoft/Windows Server, version 1909 (Server Core installation)v5Range: unspecified
- Microsoft/Windows Server, version 2004 (Server Core installation)v5Range: unspecified
Patches
Vulnerability mechanics
References
4- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1436nvdPatchVendor Advisory
- www.openwall.com/lists/oss-security/2020/08/25/3nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2020/08/25/5nvdMailing ListThird Party Advisory
- www.zerodayinitiative.com/advisories/ZDI-20-877/nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.