Language:
Severity: High
ID: 139488
File Name: smb_nt_ms20_aug_4571694.nasl
Version: 1.24
Type: local
Agent: windows
Family: Windows : Microsoft Bulletins
Published: 8/11/2020
Updated: 12/2/2024
Supported Sensors: Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Factor: Critical
Score: 10.0
Risk Factor: High
Base Score: 9.3
Temporal Score: 8.1
Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2020-1564
Risk Factor: High
Base Score: 8.8
Temporal Score: 8.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
CVSS Score Source: CVE-2020-1561
CPE: cpe:/o:microsoft:windows, cpe:/a:microsoft:edge
Required KB Items: SMB/MS_Bulletin_Checks/Possible
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 8/11/2020
Vulnerability Publication Date: 8/11/2020
CISA Known Exploited Vulnerability Due Dates: 9/21/2020, 5/3/2022
Core Impact
Metasploit (Microsoft Spooler Local Privilege Elevation Vulnerability)
CVE: CVE-2020-1046, CVE-2020-1337, CVE-2020-1339, CVE-2020-1377, CVE-2020-1378, CVE-2020-1379, CVE-2020-1380, CVE-2020-1383, CVE-2020-1464, CVE-2020-1466, CVE-2020-1467, CVE-2020-1470, CVE-2020-1472, CVE-2020-1473, CVE-2020-1474, CVE-2020-1475, CVE-2020-1476, CVE-2020-1477, CVE-2020-1478, CVE-2020-1484, CVE-2020-1485, CVE-2020-1486, CVE-2020-1487, CVE-2020-1488, CVE-2020-1489, CVE-2020-1490, CVE-2020-1492, CVE-2020-1509, CVE-2020-1511, CVE-2020-1512, CVE-2020-1513, CVE-2020-1515, CVE-2020-1516, CVE-2020-1517, CVE-2020-1518, CVE-2020-1519, CVE-2020-1520, CVE-2020-1521, CVE-2020-1522, CVE-2020-1525, CVE-2020-1526, CVE-2020-1527, CVE-2020-1529, CVE-2020-1530, CVE-2020-1531, CVE-2020-1533, CVE-2020-1534, CVE-2020-1537, CVE-2020-1538, CVE-2020-1549, CVE-2020-1550, CVE-2020-1552, CVE-2020-1553, CVE-2020-1554, CVE-2020-1556, CVE-2020-1557, CVE-2020-1558, CVE-2020-1561, CVE-2020-1562, CVE-2020-1564, CVE-2020-1565, CVE-2020-1566, CVE-2020-1567, CVE-2020-1568, CVE-2020-1570, CVE-2020-1577, CVE-2020-1579, CVE-2020-1584, CVE-2020-1587
CISA-NCAS: AA22-011A
IAVA: 0001-A-0647, 2020-A-0361-S, 2020-A-0367-S, 2020-A-0370-S, 2020-A-0438-S, 2021-A-0429-S, 2021-A-0431-S
MSFT: MS20-4571694
MSKB: 4571694