An information disclosure vulnerability exists when the Windows WaasMedic Service improperly handles memory.
To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to improperly disclose memory.
The security update addresses the vulnerability by correcting how the Windows WaasMedic Service handles memory.
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1548 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
19 Jan 2024, 00:15
Type | Values Removed | Values Added |
---|---|---|
Summary | An information disclosure vulnerability exists when the Windows WaasMedic Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to improperly disclose memory. The security update addresses the vulnerability by correcting how the Windows WaasMedic Service handles memory. |
04 Jan 2024, 02:15
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 2.1
v3 : 7.8 |
Summary | <p>An information disclosure vulnerability exists when the Windows WaasMedic Service improperly handles memory.</p> <p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to improperly disclose memory.</p> <p>The security update addresses the vulnerability by correcting how the Windows WaasMedic Service handles memory.</p> |
Information
Published : 2020-08-17 19:15
Updated : 2024-02-28 17:47
NVD link : CVE-2020-1548
Mitre link : CVE-2020-1548
CVE.ORG link : CVE-2020-1548
JSON object : View
Products Affected
microsoft
- windows_server_2016
- windows_10
- windows_server_2019
CWE