CVE-2020-1070
First published: Thu May 21 2020(Updated: )
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka 'Windows Print Spooler Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1048.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Windows 10 | ||
| Windows 10 | =1607 | |
| Windows 10 | =1709 | |
| Windows 10 | =1803 | |
| Windows 10 | =1809 | |
| Windows 10 | =1903 | |
| Windows 10 | =1909 | |
| Microsoft Windows 7 | =sp1 | |
| Microsoft Windows | ||
| Microsoft Windows RT | ||
| Microsoft Windows Server | =sp2 | |
| Microsoft Windows Server | =r2-sp1 | |
| Microsoft Windows Server | =r2-sp1 | |
| Microsoft Windows Server | ||
| Microsoft Windows Server | =r2 | |
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server 2019 | =1903 | |
| Microsoft Windows Server 2019 | =1909 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2020-1070?
CVE-2020-1070 has a severity rating of critical, as it allows elevation of privilege in affected Windows systems.
How do I fix CVE-2020-1070?
To fix CVE-2020-1070, it is recommended to apply the latest security updates provided by Microsoft for the affected Windows versions.
Which Windows versions are affected by CVE-2020-1070?
CVE-2020-1070 affects multiple versions of Windows, including Windows 7, 8.1, 10, and Windows Server editions.
Can CVE-2020-1070 be exploited remotely?
CVE-2020-1070 requires local access to the vulnerable system to exploit the privilege elevation vulnerability.
What are the potential impacts of CVE-2020-1070?
Exploitation of CVE-2020-1070 may allow attackers to execute arbitrary code with elevated privileges, compromising system security.
- agent/type
- agent/severity
- agent/author
- agent/references
- agent/remedy
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- vendor/microsoft
- canonical/windows 10
- version/windows 10/1607
- version/windows 10/1709
- version/windows 10/1803
- version/windows 10/1809
- version/windows 10/1903
- version/windows 10/1909
- canonical/microsoft windows 7
- version/microsoft windows 7/sp1
- canonical/microsoft windows
- canonical/microsoft windows rt
- canonical/microsoft windows server
- version/microsoft windows server/sp2
- version/microsoft windows server/r2-sp1
- version/microsoft windows server/r2
- canonical/microsoft windows server 2016
- canonical/microsoft windows server 2019
- version/microsoft windows server 2019/1903
- version/microsoft windows server 2019/1909