What is the severity of CVE-2020-0998?

CVE-2020-0998 has a severity rating of important, indicating a significant impact due to potential elevation of privilege.

How do I fix CVE-2020-0998?

To fix CVE-2020-0998, apply the latest updates provided by Microsoft for affected versions of Windows.

Which systems are affected by CVE-2020-0998?

CVE-2020-0998 affects various versions of Windows 10, Windows 8.1, and Windows Server, including specific builds.

What type of attack does CVE-2020-0998 enable?

CVE-2020-0998 enables a local attacker to execute processes with elevated privileges on the affected systems.

How can I determine if my system is vulnerable to CVE-2020-0998?

You can determine if your system is vulnerable to CVE-2020-0998 by checking the installed version of Windows against the list of affected versions.

Vulnerability/
CVE-2020-0998

high

7.8

11/9/2020

18/11/2024

CVE-2020-0998: Windows Graphics Component Elevation of Privilege Vulnerability

First published: Fri Sep 11 2020(Updated: )

An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context. In a local attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to take control over the affected system. The update addresses the vulnerability by correcting the way in which the Microsoft Graphics Component handles objects in memory and preventing unintended elevation from user mode.

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Windows 10
Windows 10
Windows 10	=1607
Windows 10	=1607
Windows 10	=1709
Windows 10	=1803
Windows 10	=1809
Windows 10	=1903
Windows 10	=1909
Windows 10	=2004
Microsoft Windows
Microsoft Windows
Microsoft Windows RT
Microsoft Windows Server	=r2
Microsoft Windows Server 2016
Microsoft Windows Server 2016	=1903
Microsoft Windows Server 2016	=1909
Microsoft Windows Server 2016	=2004
Microsoft Windows Server 2019

Remedy

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0998

Never miss a vulnerability like this again

Reference Links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0998

Frequently Asked Questions

What is the severity of CVE-2020-0998?
CVE-2020-0998 has a severity rating of important, indicating a significant impact due to potential elevation of privilege.
How do I fix CVE-2020-0998?
To fix CVE-2020-0998, apply the latest updates provided by Microsoft for affected versions of Windows.
Which systems are affected by CVE-2020-0998?
CVE-2020-0998 affects various versions of Windows 10, Windows 8.1, and Windows Server, including specific builds.
What type of attack does CVE-2020-0998 enable?
CVE-2020-0998 enables a local attacker to execute processes with elevated privileges on the affected systems.
How can I determine if my system is vulnerable to CVE-2020-0998?
You can determine if your system is vulnerable to CVE-2020-0998 by checking the installed version of Windows against the list of affected versions.

agent/type
agent/first-publish-date
agent/description
agent/references
agent/severity
agent/title
agent/remedy
agent/event
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/author
collector/nvd-index
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
vendor/microsoft
canonical/windows 10
version/windows 10/1607
version/windows 10/1709
version/windows 10/1803
version/windows 10/1809
version/windows 10/1903
version/windows 10/1909
version/windows 10/2004
canonical/microsoft windows
canonical/microsoft windows rt
canonical/microsoft windows server
version/microsoft windows server/r2
canonical/microsoft windows server 2016
version/microsoft windows server 2016/1903
version/microsoft windows server 2016/1909
version/microsoft windows server 2016/2004
canonical/microsoft windows server 2019