CVE-2020-17136
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Vexday Risk Score
41Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS 7.8EPSS 14.0%KEV nãoPoC —Nuclei —Metasploit simPatch referenciado
Lifecycle
10 Mar 2020Metasploit module available
09 Dec 2020Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Affected products
Microsoft · Windows 10 Version 1803Microsoft · Windows 10 Version 1809Microsoft · Windows 10 Version 1903 for 32-bit SystemsMicrosoft · Windows 10 Version 1903 for ARM64-based SystemsMicrosoft · Windows 10 Version 1903 for x64-based SystemsMicrosoft · Windows 10 Version 1909Microsoft · Windows 10 Version 2004Microsoft · Windows 10 Version 20H2Microsoft · Windows Server 2019Microsoft · Windows Server 2019 (Server Core installation)Microsoft · Windows Server, version 1903 (Server Core installation)Microsoft · Windows Server, version 1909 (Server Core installation)Microsoft · Windows Server version 2004Microsoft · Windows Server version 20H2