Medium severity5.5NVD Advisory· Published Aug 17, 2020· Updated May 29, 2026

CVE-2020-1574

Description

A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code. Exploitation of the vulnerability requires that a program process a specially crafted image file. The update addresses the vulnerability by correcting how Microsoft Windows Codecs Library handles objects in memory.

Affected products

Microsoft/Windows Codecs Libraryllm-fuzzy
Microsoft/Windows 10 1909cpe-rescue
Range: N/A
Microsoft/Windows 10 Version 2004v5
Range: N/A

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1574nvdPatchVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.358
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000