CVE-2020-1040
Microsoft Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability
CVSS
—
Sin CVSS
EPSS
6.9%
p93
KEV
SÍ
3 nov 2021
Exploit Today
78
0-100
Publicado: — · Última mod.: —
Producto
Microsoft / Hyper-V RemoteFX
Vulnerabilidad
Microsoft Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability
Añadido a KEV
3 nov 2021
Remediar antes de
3 may 2022
Uso conocido en ransomware
No
Descripción resumida
Microsoft Hyper-V RemoteFX vGPU contains an improper input validation vulnerability due to the host server failing to properly validate input from an authenticated user on a guest operating system. Successful exploitation allows for remote code execution on the host operating system.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2020-1040
Sin CVEs relacionados por CWE o producto.