Home

CVE-2020-0939

Description

An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka Media Foundation Information Disclosure Vulnerability. This CVE ID is unique from CVE-2020-0937, CVE-2020-0945, CVE-2020-0946, CVE-2020-0947.

Risk Information

Base Score
5.4
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
27.512

Associated Vulnerability

VulnerabilityOS Platform
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1903 for x86-based Systems (KB4549951)Windows
Windows Elevation of Privilege Vulnerability for Windows Server, version 1903 for x64-based Systems (KB4549951)Windows
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1903 for x64-based Systems (KB4549951)Windows
Windows Elevation of Privilege Vulnerability for Windows Server, version 1909 for x64-based Systems (KB4549951)Windows
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1909 for x64-based Systems (KB4549951)Windows
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1909 for x86-based Systems (KB4549951)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-286472020-04 Cumulative Update for Windows 10 Version 1903 for x86-based Systems (KB4549951)
PATCH-286482020-04 Cumulative Update for Windows Server, version 1903 for x64-based Systems (KB4549951)
PATCH-286492020-04 Cumulative Update for Windows 10 Version 1903 for x64-based Systems (KB4549951)
PATCH-286502020-04 Cumulative Update for Windows Server, version 1909 for x64-based Systems (KB4549951)
PATCH-286512020-04 Cumulative Update for Windows 10 Version 1909 for x64-based Systems (KB4549951)
PATCH-286522020-04 Cumulative Update for Windows 10 Version 1909 for x86-based Systems (KB4549951)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234