Share:

CVE-2020-1112

Severe 9.9

An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) IIS module improperly handles uploaded content, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.

Published May 22, 2020.

Affected software

Microsoft Windows Server 2012

Microsoft Windows 7

Microsoft Windows Server 2019

Microsoft Windows 8.1

Microsoft Windows Rt 8.1

Microsoft Windows Server 2008

Microsoft Windows Server 2016

Microsoft Windows 10

Get alerts for Microsoft Windows Server 2012

Reference links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1112