Windows Setup Elevation of Privilege Vulnerability

<p>An elevation of privilege vulnerability exists in Windows Setup in the way it handles directories.</p> <p>A locally authenticated attacker could run arbitrary code with elevated system privileges. After successfully exploiting the vulnerability, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p>The security update addresses the vulnerability by ensuring Windows Setup properly handles directories.</p>

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

N/A

Microsoft Windows 安装程序安全漏洞

Microsoft Windows 10是美国微软（Microsoft）公司的一套个人电脑使用的操作系统。 Windows 安装程序中存在安全漏洞。该漏洞允许攻击者可以使用提升的系统特权运行任意代码。成功利用此漏洞的攻击者可随后安装程序。以下产品及版本受到影响： Windows 10 1909版本， Windows 10 2004版本， Windows 10 1809版本， Windows 10 1803版本， Windows 10 1903版本。

N/A

N/A