← ExploitWatch
HomeExploited Vulnerabilities

CVE-2020-1350 — Actively Exploited: Windows (Microsoft)

Microsoft Windows DNS Servers fail to properly handle requests, allowing an attacker to perform remote code execution in the context of the Local System Account. The vulnerability is also known under the moniker of SIGRed.

CVE IDCVE-2020-1350
VendorMicrosoft
ProductWindows
Vulnerability nameMicrosoft Windows DNS Server Remote Code Execution Vulnerability
Date added2021-11-03
Remediation due2022-05-03
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionMicrosoft Windows DNS Servers fail to properly handle requests, allowing an attacker to perform remote code execution in the context of the Local System Account. The vulnerability is also known under the moniker of SIGRed.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →