VDB
CVE-2020-1585
CVE-2020-1585
PUBLISHED
CVSS 8.800000190734863 HIGH
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1560, CVE-2020-1574.
EPSS 16.65% · 95.1th percentile
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
16.65%
95.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 10 Version 1903 for 32-bit Systems | * |
| Microsoft | Windows 10 Version 1903 for ARM64-based Systems | N/A |
| Microsoft | Windows 10 Version 1709 | N/A |
| Microsoft | Windows 10 Version 2004 | N/A |
| Microsoft | Windows 10 Version 1709 for 32-bit Systems | N/A |
| Microsoft | Windows 10 Version 1903 for x64-based Systems | N/A |
| Microsoft | Windows 10 Version 1909 | N/A |
| Microsoft | Windows 10 Version 1809 | N/A |
| microsoft | windows_10 | 1909, 1709, 2004 |
| Microsoft | Windows 10 Version 1803 | * |
Exploit Intelligence
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1585 (circl)
- java-sig.yara (github-yara)
- java-sig.yara (github-yara)
- java-sig.yara (github-yara)
- java-sig.yara (github-yara)
- guids_only.yara (github-yara)
- guids_only.yara (github-yara)
- guids_only.yara (github-yara)
- guids_only.yara (github-yara)
- Black-Basta.yar (github-yara)
…and 23 more exploits
Timeline
- Aug 12, 2020 CVE Published
- Sep 17, 2020 PoC Published
- Oct 3, 2020 PoC Published
- Jan 10, 2021 PoC Published
- Apr 14, 2021 EPSS Score
- Jun 22, 2021 PoC Published
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 24, 2023 EPSS Score
- May 3, 2023 EPSS Score