Remote Code Execution Vulnerability in Microsoft Edge PDF Reader
CVE-2020-1096
Key Information:
- Vendor
Microsoft
- Status
- Microsoft Edge (edgehtml-based) On Windows 10 Version 1803 For 32-bit Systems
- Microsoft Edge (edgehtml-based) On Windows 10 Version 1803 For X64-based Systems
- Microsoft Edge (edgehtml-based) On Windows 10 Version 1803 For Arm64-based Systems
- Microsoft Edge (edgehtml-based) On Windows 10 Version 1809 For 32-bit Systems
- Vendor
- CVE Published:
- 21 May 2020
What is CVE-2020-1096?
A vulnerability exists in Microsoft Edge PDF Reader where improper handling of objects in memory allows for remote code execution. This can lead to potential unauthorized access to system resources, putting user data at risk. Ensuring that Microsoft Edge is updated to the latest version is crucial for mitigating the risks associated with this vulnerability.
Affected Version(s)
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for 32-bit Systems = unspecified
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for ARM64-based Systems = unspecified
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for x64-based Systems = unspecified
References
EPSS Score
7% chance of being exploited in the next 30 days.
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved