CVE-2020-1048

Description from NVD

An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka 'Windows Print Spooler Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1070.

Information Acquisition Date:2021-04-27T10:44Z

CVSS 2.0: 7.2 HIGH CVSS 3.x: 7.8 HIGH

▼ CVSS3 Vec CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV)	Network	Adjacent	Local	Physical
Attack Complexity (AC)	LOW	High
Privileges Required (PR)	None	Low	High
User Interaction (UI)	None	Required
Scope (S)	Unchange	Change
Confidentiality (C)	None	Low	High
Integrity (I)	None	Low	High
Availability (A)	None	Low	High

▼ CVSS2 Vec AV:L/AC:L/Au:N/C:C/I:C/A:C

Attack Vector (AV)	Network	Adjacent	Local
Access Complexity (AC)	Low	Medium	High
Authentication (Au)	None	Single	Multiple
Confidentiality (C)	None	Partial	Complete
Integrity (I)	None	Partial	Complete
Availability (A)	None	Partial	Complete

NVD References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1048
source:MISC
tags:Patch Vendor Advisory

http://packetstormsecurity.com/files/158222/Windows-Print-Spooler-Privilege-Escalation.html
source:MISC
tags:

http://packetstormsecurity.com/files/159217/Microsoft-Spooler-Local-Privilege-Elevation.html
source:MISC
tags:

Description from Forti

Microsoft: Windows Print Spooler Elevation of Privilege Vulnerability

Information Acquisition Date:2020/09/28

Affected Products

Impact

Recommended Actions

References

Refer to Information on External Sites

CVE Infomation	Exploits or more Infomation
mitre	EXPLOIT DATABASE
NVD	0day.today
vulmon.com	github
CVE Details	Twitter
JVN ENG JPN
Reconshell

Software Tag: Windows(1 tweets)

List of frequently cited URLs

URL	Num of Times Referred to
https://alerts.vulmon.com/?utm_source=twitter&utm_medium=so...	266
https://lists.astaro.com/ASGV9-IPS-rules.html	27
https://github.com/ionescu007/PrintDemon	5
https://betanews.com/2020/08/07/cve-2020-1048-cve-2020-1337...	5
https://blog.0patch.com/2020/05/micropatching-printdemon-vu...	5
https://voidsec.com/cve-2020-1337-printdemon-is-dead-long-l...	4
http://tweetedtimes.com/vistacomputing?s=tnp	4
https://www.helpnetsecurity.com/2020/05/14/cve-2020-1048/	4
https://twitter.com/aionescu/status/1260276176423211012	3
https://windows-internals.com/printdemon-cve-2020-1048/	3
https://packetstormsecurity.com/files/158222/CVE-2020-1048-...	3
https://portal.msrc.microsoft.com/en-US/security-guidance/a...	3

Information from Twitter

User	URL	Info Source	Date
Wh0_D1s_1	https://twitter.com/Wh0_D1s_1/status/1507375963088240646/ph...	Source Wh0_D1s_1 1507375963088240646	2022/03/26

List of frequently cited URLs

URL	Num of Times Referred to
alerts.vulmon.com	266
lists.astaro.com	27
github.com	5
betanews.com	5
blog.0patch.com	5
voidsec.com	4
tweetedtimes.com	4
www.helpnetsecurity.com	4
twitter.com	3
windows-internals.com	3
packetstormsecurity.com	3
portal.msrc.microsoft.com	3

Information from Twitter

User	URL	Info Source
Wh0_D1s_1	twitter.com	Show Tweet

GitHub Search Results: Up to 10

Name	URL
No Data

GitHub Search Results: Up to 10

Name	URL
No Data

2022/03/26 Score : 1
Added Har-sia Database : 2020/05/13
Last Modified : 2022/03/26
Highest Scored Date : 2020/05/14
Highest Score : 38