Vulnerabilities > Microsoft > Windows 10 > 1803
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-17 | CVE-2020-1515 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows Telephony Server improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. | 7.8 |
| 2020-08-17 | CVE-2020-1513 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows CSC Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. | 7.8 |
| 2020-08-17 | CVE-2020-1512 | Unspecified vulnerability in Microsoft products An information disclosure vulnerability exists when the Windows State Repository Service improperly handles objects in memory. | 7.8 |
| 2020-08-17 | CVE-2020-1511 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations. | 7.8 |
| 2020-08-17 | CVE-2020-1510 | Information Exposure vulnerability in Microsoft Windows 10 An information disclosure vulnerability exists when the win32k component improperly provides kernel information. | 5.5 |
| 2020-08-17 | CVE-2020-1509 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists in the Local Security Authority Subsystem Service (LSASS) when an authenticated attacker sends a specially crafted authentication request. | 7.8 |
| 2020-08-17 | CVE-2020-1492 | Out-of-bounds Write vulnerability in Microsoft products A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. | 7.8 |
| 2020-08-17 | CVE-2020-1490 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations. | 7.8 |
| 2020-08-17 | CVE-2020-1489 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows CSC Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. | 7.8 |
| 2020-08-17 | CVE-2020-1488 | Improper Privilege Management vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files. To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application to elevate privileges. The security update addresses the vulnerability by correcting how AppX Deployment Extensions manages privileges. | 7.0 |