CVE-2020-1301

HIGH

Microsoft Windows 10 - Remote Code Execution

Title source: rule

Description

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 (SMBv1) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'.

Exploits (2)

nomisec WORKING POC 17 stars
by shubham0d · poc
https://github.com/shubham0d/CVE-2020-1301

References (1)

Scores

CVSS v3 8.8
EPSS 0.5953
EPSS Percentile 98.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (21)
microsoft/windows_10
microsoft/windows_10 1607
microsoft/windows_10 1709
microsoft/windows_10 1803
microsoft/windows_10 1809
microsoft/windows_10 1903
microsoft/windows_10 1909
microsoft/windows_10 2004
microsoft/windows_7
microsoft/windows_8.1
... and 11 more
Published Jun 09, 2020
Tracked Since Feb 18, 2026