KEV · Actively exploited
CVE-2020-0796
CRITICAL 10.0
KEV
Windows SMBv3 Client/Server Remote Code Execution Vulnerability
EPSS
94.42%
exploit likely
percentile 100.0%
CISA Known Exploited Vulnerability
- Added to KEV
- 2022-02-10
- Remediation deadline
- 2022-08-10
- Required action
- Apply updates per vendor instructions.
- Ransomware
- Yes, known ransomware campaign
OS versions that fix this CVE
This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.
- Windows Fixed in Windows 10 1909 · 2019-09 Windows 10 1903 · 2019-03