CVE-2020-1585 — Vulnetix

Try Vulnetix Request Demo

CVE-2020-1585 PUBLISHED CVSS 8.800000190734863 HIGH

A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1560, CVE-2020-1574.

EPSS 16.65% · 94.9th percentile

Risk Scores

CVSS v3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

16.65%

94.9th percentile

Affected Products

Vendor	Product	Versions
Microsoft	Windows 10 Version 1903 for 32-bit Systems	N/A
Microsoft	Windows 10 Version 1903 for ARM64-based Systems	N/A
Microsoft	Windows 10 Version 1709	N/A
Microsoft	Windows 10 Version 2004	N/A
Microsoft	Windows 10 Version 1709 for 32-bit Systems	N/A
Microsoft	Windows 10 Version 1903 for x64-based Systems	N/A
Microsoft	Windows 10 Version 1909	N/A
Microsoft	Windows 10 Version 1809	N/A
microsoft	windows_10	1803, 1809, 1903
Microsoft	Windows 10 Version 1803	N/A

Timeline

Aug 12, 2020 CVE Published
Sep 17, 2020 PoC Published
Oct 3, 2020 PoC Published
Jan 10, 2021 PoC Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 PoC Published
Jan 6, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Apr 1, 2022 EPSS Score
Mar 7, 2023 EPSS Score
Mar 24, 2023 EPSS Score
May 3, 2023 EPSS Score

References

Open in Interactive Console →