CVE-2020-1408

High

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka…

microsoft·CWE-346·Published 2020-07-14

CVSS

8.8

EPSS

0.06

KEV

Exploits

cve.orgen

189 chars

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Microsoft Graphics Remote Code Execution Vulnerability'.

NVDen

189 chars

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Microsoft Graphics Remote Code Execution Vulnerability'.

Se presenta una vulnerabilidad de ejecución de código remota cuando el Windows Font Library maneja inapropiadamente unas fuentes insertadas especialmente diseñadas, también se conoce como "Microsoft Graphics Remote Code Execution Vulnerability"

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	9.3	8.6	10.0	AV:N/AC:M/Au:N/C:C/I:C/A:C
3.1	Primary	NVD	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H