CVE-2020-1054

Vulnerability Profile Updated 3 months ago

Download STIX

Preview STIX

CVE-2020-1054 is a software vulnerability that lies in the design and implementation of Microsoft's Win32k component. It specifically exploits a flaw in the win32k window object, enabling it to write data beyond its intended boundaries. This vulnerability is significant because it allows malicious actors to elevate their privileges within the system, thereby gaining access to resources and operations that would otherwise be restricted. The malware Trojan.Wins.RaspberryRobin takes advantage of this vulnerability, along with another flaw identified as CVE-2021-1732, to escalate its privileges. These dual vulnerabilities provide the malware with an effective avenue for intrusion and control over affected systems. The exploitation of these flaws poses a significant threat to the integrity, confidentiality, and availability of information and resources on compromised systems. However, protection against this threat is provided by Check Point Threat Emulation and Intrusion Prevention System (IPS). These security solutions are designed to identify and neutralize threats posed by vulnerabilities like CVE-2020-1054 and CVE-2021-1732. By implementing these protective measures, organizations can significantly reduce the risk of compromise and maintain the security of their systems and data.

What's your take? (Question 1 of 2)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Possible Aliases / Cluster overlaps

It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.

ID	Votes	Profile Description

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Malware

Exploits

Associated Malware

To see the evidence that has resulted in this association, create a free account

ID	Type	Votes	Profile Description
No associations to display

Associated Threat Actors

To see the evidence that has resulted in this association, create a free account

ID	Type	Votes	Profile Description
No associations to display

Associated Vulnerabilities

To see the evidence that has resulted in this association, create a free account

ID	Type	Votes	Profile Description
CVE-2021-1732	Unspecified	1	CVE-2021-1732 is a software vulnerability, specifically a flaw in the design or implementation of Microsoft's Windows 10 systems. This vulnerability exposes the system to an elevation of privilege threat, where an attacker could potentially gain higher-level permissions on the system and carry out m

Source Document References

Information about the CVE-2020-1054 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source	CreatedAt	Title
Checkpoint	a year ago	Raspberry Robin: Anti-Evasion How-To & Exploit Analysis - Check Point Research
InfoSecurity-magazine	a year ago	Raspberry Robin Adopts Unique Evasion Techniques
CERT-EU	a year ago	24th April – Threat Intelligence Report - Check Point Research