目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

CVE-2020-16919— Microsoft Windows 信息泄露漏洞

CVSS 5.5 · Medium EPSS 0.60% · P70
新しい脆弱性情報の通知を購読するログインして購読

I. CVE-2020-16919の基本情報

脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗

高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。

脆弱性タイトル
Windows Enterprise App Management Service Information Disclosure Vulnerability
ソース: NVD (National Vulnerability Database)
脆弱性説明
<p>An information disclosure vulnerability exists when the Windows Enterprise App Management Service improperly handles certain file operations. An attacker who successfully exploited this vulnerability could read arbitrary files.</p> <p>An attacker with unprivileged access to a vulnerable system could exploit this vulnerability.</p> <p>The security update addresses the vulnerability by ensuring the Windows Enterprise App Management Service properly handles file operations.</p>
ソース: NVD (National Vulnerability Database)
CVSS情報
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Microsoft Windows 信息泄露漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Microsoft Windows是美国微软(Microsoft)公司的一种桌面操作系统。 Windows 企业应用程序管理服务存在信息泄露漏洞。该漏洞允许攻击者可以读取任意文件。以下产品及版本受到影响: Windows 10 1909版本, Windows 10 1709版本, Windows Server 1909版本, Windows Server 1903版本, Windows Server 2004版本, Windows 10 2004版本, Windows 10 1809版本, Windows
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)

影響を受ける製品

ベンダープロダクト影響を受けるバージョンCPE購読
MicrosoftWindows 10 Version 1803 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
MicrosoftWindows 10 Version 1809 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*
MicrosoftWindows Server 2019 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
MicrosoftWindows Server 2019 (Server Core installation) 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
MicrosoftWindows 10 Version 1909 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*
MicrosoftWindows Server, version 1909 (Server Core installation) 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*
MicrosoftWindows 10 Version 1709 for 32-bit Systems 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*
MicrosoftWindows 10 Version 1709 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*
MicrosoftWindows 10 Version 1903 for 32-bit Systems 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*
MicrosoftWindows 10 Version 1903 for x64-based Systems 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*
MicrosoftWindows 10 Version 1903 for ARM64-based Systems 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*
MicrosoftWindows Server, version 1903 (Server Core installation) 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_server_1903:*:*:*:*:*:*:*:*
MicrosoftWindows 10 Version 2004 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
MicrosoftWindows Server version 2004 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
MicrosoftWindows 10 Version 1507 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*
MicrosoftWindows 10 Version 1607 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*
MicrosoftWindows Server 2016 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
MicrosoftWindows Server 2016 (Server Core installation) 10.0.0 ~ publication cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*

II. CVE-2020-16919の公開POC

#POC説明ソースリンクShenlongリンク
AI生成POCプレミアム

公開POCは見つかりませんでした。

ログインしてAI POCを生成

III. CVE-2020-16919のインテリジェンス情報

登录查看更多情报信息。

Same Patch Batch · Microsoft · 2020-10-16 · 89 CVEs total

CVE-2020-10808.8 HIGHWindows Hyper-V Elevation of Privilege Vulnerability
CVE-2020-168988.8 HIGHWindows TCP/IP Remote Code Execution Vulnerability
CVE-2020-169118.8 HIGHGDI+ Remote Code Execution Vulnerability
CVE-2020-168918.8 HIGHWindows Hyper-V Remote Code Execution Vulnerability
CVE-2020-169468.7 HIGHMicrosoft Office SharePoint XSS Vulnerability
CVE-2020-169458.7 HIGHMicrosoft Office SharePoint XSS Vulnerability
CVE-2020-169448.7 HIGHMicrosoft SharePoint Reflective XSS Vulnerability
CVE-2020-169528.6 HIGHMicrosoft SharePoint Remote Code Execution Vulnerability
CVE-2020-169518.6 HIGHMicrosoft SharePoint Remote Code Execution Vulnerability
CVE-2020-169357.8 HIGHWindows COM Server Elevation of Privilege Vulnerability
CVE-2020-169547.8 HIGHMicrosoft Office Remote Code Execution Vulnerability
CVE-2020-169407.8 HIGHWindows - User Profile Service Elevation of Privilege Vulnerability
CVE-2020-169397.8 HIGHGroup Policy Elevation of Privilege Vulnerability
CVE-2020-169367.8 HIGHWindows Backup Service Elevation of Privilege Vulnerability
CVE-2020-169307.8 HIGHMicrosoft Excel Remote Code Execution Vulnerability
CVE-2020-169297.8 HIGHMicrosoft Excel Remote Code Execution Vulnerability
CVE-2020-169287.8 HIGHMicrosoft Office Click-to-Run Elevation of Privilege Vulnerability
CVE-2020-169247.8 HIGHJet Database Engine Remote Code Execution Vulnerability
CVE-2020-169317.8 HIGHMicrosoft Excel Remote Code Execution Vulnerability
CVE-2020-169677.8 HIGHWindows Camera Codec Pack Remote Code Execution Vulnerability

Showing 20 of 89 CVEs. View all on vendor page →

IV. 関連脆弱性

同じ製品: Windows 10 Version 1803
同じベンダー: Microsoft

V. CVE-2020-16919へのコメント

まだコメントはありません

コメントを残す