VDB
CVE-2020-1574
CVE-2020-1574
PUBLISHED
CVSS 5.5 MEDIUM
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1560, CVE-2020-1585.
EPSS 1.19% · 79.2th percentile
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C
EPSS Score
1.19%
79.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 10 Version 1909 | N/A |
| microsoft | windows_10 | 1909, 2004 |
| Microsoft | Windows 10 Version 2004 | N/A |
Exploit Intelligence
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1574 (circl)
- java-sig.yara (github-yara)
- java-sig.yara (github-yara)
- java-sig.yara (github-yara)
- java-sig.yara (github-yara)
- guids_only.yara (github-yara)
- guids_only.yara (github-yara)
- guids_only.yara (github-yara)
- guids_only.yara (github-yara)
- Black-Basta.yar (github-yara)
…and 23 more exploits
Timeline
- Aug 12, 2020 CVE Published
- Sep 17, 2020 PoC Published
- Oct 3, 2020 PoC Published
- Jan 10, 2021 PoC Published
- Apr 14, 2021 EPSS Score
- Jun 22, 2021 PoC Published
- Jan 6, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 7, 2023 EPSS Score
- Apr 20, 2023 EPSS Score
- May 3, 2023 EPSS Score