← Back

CVE-2020-1206

nvd nist
Published: Jun 9, 2020Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

An information disclosure vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests, aka 'Windows SMBv3 Client/Server Information Disclosure Vulnerability'.

Affected (6)

Microsoft
2 products
Windows 10
Windows Server 2016
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Windows 10
Version 1903
Windows 10
Version 1909
Windows 10
Version 2004
Microsoft
Windows Server 2016
Version 1903
Windows Server 2016
Version 1909
Windows Server 2016
Version 2004

Related CWEs

CWE-908
Use of Uninitialized Resource
The product uses or accesses a resource that has not been initialized.

References (4)

Source: secure@microsoft.com
Technical Description
Source: secure@microsoft.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Technical Description
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.