KEV · Actively exploited
CVE-2020-17087
HIGH 7.8
KEV
Windows Kernel Local Elevation of Privilege Vulnerability
EPSS
20.41%
moderate exploit risk
percentile 95.7%
CISA Known Exploited Vulnerability
- Added to KEV
- 2021-11-03
- Remediation deadline
- 2022-05-03
- Required action
- Apply updates per vendor instructions.
- Ransomware
- No
OS versions that fix this CVE
This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.
- Windows Fixed in Windows Server 2019 (Server Core installation) Windows Server 2019 Windows Server 2016 (Server Core installation) Windows Server 2016 Windows 10 20H2 · 2020-H2 Windows 10 2004 · 2020-04 Windows 10 1909 · 2019-09 Windows 10 1903 · 2019-03 Windows 10 1809 · 2018-09 Windows 10 1803 · 2018-03 Windows 10 1607 · 2016-07