High severity7.5NVD Advisory· Published Aug 17, 2020· Updated Jun 17, 2026
CVE-2020-1459
CVE-2020-1459
Description
An information disclosure vulnerability exists on ARM implementations that use speculative execution in control flow via a side-channel analysis, aka "straight-line speculation." To exploit this vulnerability, an attacker with local privileges would need to run a specially crafted application. The security update addresses the vulnerability by bypassing the speculative execution.
Affected products
4cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*+ 1 more
- cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*range: 10.0.0
- cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*range: 10.0.0
Patches
Vulnerability mechanics
References
1- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1459nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.