Microsoft Windows Runtime CVE-2020-1217 Information Disclosure Vulnerability

description-logoDescription

An information disclosure vulnerability exists when the Windows Runtime improperly handles objects in memory. An attacker who successfully exploited this vulnerability could read memory that was freed and might run arbitrary code in an elevated context. An attacker could exploit this vulnerability by running a specially crafted application on the victim system. The update addresses the vulnerability by correcting the way the Windows Runtime handles objects in memory.

affected-products-logoAffected Applications

Windows Server version 2004 (Server Core installation)
Windows Server version 1903 (Server Core installation)
Windows Server version 1803 (Server Core Installation)
Windows 10
Windows Server version 1909 (Server Core installation)
Windows Server 2019

CVE References

CVE-2020-1217