CVE-2020-1432
CVE-2020-1432
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 4.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
14 Jul 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An information disclosure vulnerability exists when Skype for Business is accessed via Internet Explorer, aka 'Skype for Business via Internet Explorer Information Disclosure Vulnerability'.
Affected products
Microsoft · Internet Explorer 11Microsoft · Internet Explorer 11 on Windows 10 Version 1903 for 32-bit SystemsMicrosoft · Internet Explorer 11 on Windows 10 Version 1903 for ARM64-based SystemsMicrosoft · Internet Explorer 11 on Windows 10 Version 1903 for x64-based SystemsMicrosoft · Internet Explorer 11 on Windows 10 Version 1909 for 32-bit SystemsMicrosoft · Internet Explorer 11 on Windows 10 Version 1909 for ARM64-based SystemsMicrosoft · Internet Explorer 11 on Windows 10 Version 1909 for x64-based SystemsMicrosoft · Internet Explorer 11 on Windows 10 Version 2004 for 32-bit SystemsMicrosoft · Internet Explorer 11 on Windows 10 Version 2004 for ARM64-based SystemsMicrosoft · Internet Explorer 11 on Windows 10 Version 2004 for x64-based SystemsMicrosoft · Internet Explorer 11 on Windows Server 2012