How severe is CVE-2020-1337?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.8 out of 10.

What type of vulnerability is CVE-2020-1337?

This is classified as CWE-367, which is a common weakness in software security.

CVE-2020-1337

HIGH Year: 2020

CVSS v3 Score

7.8

High

CVSS v2 Score

7.2

High

Weakness Type

CWE-367

View all →

Vulnerability Description

An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted script or application. The update addresses the vulnerability by correcting how the Windows Print Spooler Component writes to the file system.

CVE-2017-0331

HIGH

CVSS:7.8(High)

An elevation of privilege vulnerability in the NVIDIA video driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critica...

CWE-3672017

CVE-2017-0411

HIGH

CVSS:7.8(High)

An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as Hi...

CWE-3672017

CVE-2017-0412

HIGH

CVSS:7.8(High)

CWE-3672017

CVE-2017-0756

HIGH

CVSS:7.8(High)

A remote code execution vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34621073.

CWE-3672017

CVE-2017-15404

HIGH

CVSS:7.8(High)

An ability to process crash dumps under root privileges and inappropriate symlinks handling could lead to a local privilege escalation in Crash Reporting in Google Chrome on Chrome OS prior to 61.0.31...

CWE-3672017

CVE-2018-8584

HIGH

CVSS:7.8(High)

An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC Elevation of Privilege Vulnerability." This affects Wind...

CWE-3672018

CVE-2020-1337

Vulnerability Description

Related Vulnerabilities

CVE-2017-0331

CVE-2017-0411

CVE-2017-0412

CVE-2017-0756

CVE-2017-15404

CVE-2018-8584