CVE-2020-17087

HIGH KEV

Windows Kernel - Privilege Escalation

Title source: llm

Description

Windows Kernel Local Elevation of Privilege Vulnerability

Exploits (5)

nomisec WORKING POC 258 stars

by vp777 · poc

https://github.com/vp777/Windows-Non-Paged-Pool-Overflow-Exploitation

View Code ZIP pw:eip

nomisec WORKING POC 4 stars

by revengsh · dos

https://github.com/revengsh/CVE-2020-17087

View Code ZIP pw:eip

nomisec WORKING POC

by raiden757 · poc

https://github.com/raiden757/CVE-2020-17087

View Code ZIP pw:eip

nomisec NO CODE

by ykg88 · poc

https://github.com/ykg88/OHTS_IE6052-CVE-2020-17087

View Code ZIP pw:eip

patchapalooza WORKING POC

by hyunkk95 · local

https://gitlab.com/hyunkk95/cve-2020-17087

View Code ZIP pw:eip

References (2)

[Patch, Vendor Advisory] https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17087

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-17087

Scores

CVSS v3 7.8

EPSS 0.2165

EPSS Percentile 95.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2021-11-03

VulnCheck KEV 2020-10-22

InTheWild.io 2020-10-22

ENISA EUVD EUVD-2020-9042

CWE

CWE-131

Status published

Products (21)

microsoft/windows_10_1507 (2 CPE variants)

microsoft/windows_10_1607 (2 CPE variants)

microsoft/windows_10_1803 (3 CPE variants)

microsoft/windows_10_1809 (3 CPE variants)

microsoft/windows_10_1903 (3 CPE variants)

microsoft/windows_10_1909 (3 CPE variants)

microsoft/windows_10_2004 (3 CPE variants)

microsoft/windows_10_20h2 (2 CPE variants)

microsoft/windows_7

microsoft/windows_8.1

... and 11 more

Published Nov 11, 2020

KEV Added Nov 03, 2021

Tracked Since Feb 18, 2026