Home

CVE-2020-0945

Description

An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka Media Foundation Information Disclosure Vulnerability. This CVE ID is unique from CVE-2020-0937, CVE-2020-0939, CVE-2020-0946, CVE-2020-0947.

Risk Information

Base Score
5.4
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
27.512

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Graphics Component Information Disclosure Vulnerability for Windows 8.1 for x64-based Systems (KB4550970)Windows
Microsoft Graphics Component Information Disclosure Vulnerability for Windows 8.1 for x86-based Systems (KB4550970)Windows
Microsoft Graphics Component Information Disclosure Vulnerability for Windows Server 2012 R2 for x64-based Systems (KB4550970)Windows
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1803 for x86-based Systems (KB4550922)Windows
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1903 for x86-based Systems (KB4549951)Windows
Windows Elevation of Privilege Vulnerability for Windows Server, version 1903 for x64-based Systems (KB4549951)Windows
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1903 for x64-based Systems (KB4549951)Windows
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1803 for x64-based Systems (KB4550922)Windows
Windows Elevation of Privilege Vulnerability for Windows Server, version 1909 for x64-based Systems (KB4549951)Windows
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1909 for x64-based Systems (KB4549951)Windows
Scripting Engine Memory Corruption Vulnerability for Windows Server 2019 for x64-based Systems (KB4549949)Windows
Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1809 for x64-based Systems (KB4549949)Windows
Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1809 for x86-based Systems (KB4549949)Windows
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1909 for x86-based Systems (KB4549951)Windows
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1709 for x86-based Systems (KB4550927)Windows
Windows Elevation of Privilege Vulnerability for Windows 10 Version 1709 for x64-based Systems (KB4550927)Windows
Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1507 for x86-based Systems (KB4550930)Windows
Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1507 for x64-based Systems (KB4550930)Windows
Scripting Engine Memory Corruption Vulnerability for Windows Server 2016 for x64-based Systems (KB4550929)Windows
Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1607 for x64-based Systems (KB4550929)Windows
Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1607 for x86-based Systems (KB4550929)Windows
Scripting Engine Memory Corruption Vulnerability for Windows 8.1 for x86-based Systems (KB4550961)Windows
Scripting Engine Memory Corruption Vulnerability for Windows Server 2012 R2 for x64-based Systems (KB4550961)Windows
Scripting Engine Memory Corruption Vulnerability for Windows 8.1 for x64-based Systems (KB4550961)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-286382020-04 Security Only Quality Update for Windows 8.1 for x64-based Systems (KB4550970)
PATCH-286392020-04 Security Only Quality Update for Windows 8.1 for x86-based Systems (KB4550970)
PATCH-286402020-04 Security Only Quality Update for Windows Server 2012 R2 for x64-based Systems (KB4550970)
PATCH-286422020-04 Cumulative Update for Windows 10 Version 1803 for x86-based Systems (KB4550922)
PATCH-286472020-04 Cumulative Update for Windows 10 Version 1903 for x86-based Systems (KB4549951)
PATCH-286482020-04 Cumulative Update for Windows Server, version 1903 for x64-based Systems (KB4549951)
PATCH-286492020-04 Cumulative Update for Windows 10 Version 1903 for x64-based Systems (KB4549951)
PATCH-286432020-04 Cumulative Update for Windows 10 Version 1803 for x64-based Systems (KB4550922)
PATCH-286502020-04 Cumulative Update for Windows Server, version 1909 for x64-based Systems (KB4549951)
PATCH-286512020-04 Cumulative Update for Windows 10 Version 1909 for x64-based Systems (KB4549951)
PATCH-286442020-04 Cumulative Update for Windows Server 2019 for x64-based Systems (KB4549949)
PATCH-286452020-04 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB4549949)
PATCH-286462020-04 Cumulative Update for Windows 10 Version 1809 for x86-based Systems (KB4549949)
PATCH-286522020-04 Cumulative Update for Windows 10 Version 1909 for x86-based Systems (KB4549951)
PATCH-286532020-04 Cumulative Update for Windows 10 Version 1709 for x86-based Systems (KB4550927)
PATCH-286542020-04 Cumulative Update for Windows 10 Version 1709 for x64-based Systems (KB4550927)
PATCH-286552020-04 Cumulative Update for Windows 10 Version 1507 for x86-based Systems (KB4550930)
PATCH-286562020-04 Cumulative Update for Windows 10 Version 1507 for x64-based Systems (KB4550930)
PATCH-286572020-04 Cumulative Update for Windows Server 2016 for x64-based Systems (KB4550929)
PATCH-286582020-04 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB4550929)
PATCH-286592020-04 Cumulative Update for Windows 10 Version 1607 for x86-based Systems (KB4550929)
PATCH-286692020-04 Security Monthly Quality Rollup for Windows 8.1 for x86-based Systems (KB4550961)
PATCH-286702020-04 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems (KB4550961)
PATCH-286712020-04 Security Monthly Quality Rollup for Windows 8.1 for x64-based Systems (KB4550961)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234