Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2020-0787

Microsoft | WindowsAdded 2022-01-28Remediation Deadline 2022-07-28Active Ransomware Campaign

Microsoft Windows Background Intelligent Transfer Service (BITS) Improper Privilege Management Vulnerability

Microsoft Windows BITS is vulnerable to to a privilege elevation vulnerability if it improperly handles symbolic links. An actor can exploit this vulnerability to execute arbitrary code with system-level privileges.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-269

CWE-59

References