← ExploitWatch
HomeExploited Vulnerabilities

CVE-2020-1054 — Actively Exploited: Win32k (Microsoft)

Microsoft Win32k contains a privilege escalation vulnerability when the Windows kernel-mode driver fails to properly handle objects in memory. Successful exploitation allows an attacker to execute code in kernel mode.

CVE IDCVE-2020-1054
VendorMicrosoft
ProductWin32k
Vulnerability nameMicrosoft Win32k Privilege Escalation Vulnerability
Date added2021-11-03
Remediation due2022-05-03
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionMicrosoft Win32k contains a privilege escalation vulnerability when the Windows kernel-mode driver fails to properly handle objects in memory. Successful exploitation allows an attacker to execute code in kernel mode.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →