Elevation of Privilege Vulnerability in Microsoft Service Fabric
CVE-2020-0902

9.8CRITICAL

Key Information:

Vendor: Microsoft
Status: Service Fabric
Vendor: CVE Published:; 12 March 2020

Summary

An elevation of privilege vulnerability exists in Microsoft Service Fabric's File Store Service, which could allow an attacker to gain unauthorized access to sensitive features or data. This vulnerability arises under specific conditions that could compromise system integrity and lead to further exploitation if left unaddressed. Proper mitigation strategies must be implemented to safeguard against potential attacks stemming from this issue.

Affected Version(s)

Service Fabric = unspecified

References

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 12, 2020
Vulnerability Reserved
Nov 4, 2019