The impact of this issue announcement is high – critical. Please act accordingly to rectify the issue, as stated below.
What you need to know:
CVE-2020-1441 | Windows Spatial Data Service Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Spatial Data Service improperly handles objects in memory.
To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application.
Actions to be taken:
Download security updates for the following versions:
|Windows 10 Version 1903 for 32-bit Systems|
|Windows 10 Version 1903 for x64-based Systems|
The security update addresses the vulnerability by addressing how the Windows Spatial Data Service handles objects in memory.
What is the impact of not doing the actions?
An attacker could exploit the vulnerability to overwrite or modify a protected file leading to a privilege escalation.