CVE-2020-1054

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
CVE-2020-1054 is a software vulnerability that lies in the design and implementation of Microsoft's Win32k component. It specifically exploits a flaw in the win32k window object, enabling it to write data beyond its intended boundaries. This vulnerability is significant because it allows malicious actors to elevate their privileges within the system, thereby gaining access to resources and operations that would otherwise be restricted. The malware Trojan.Wins.RaspberryRobin takes advantage of this vulnerability, along with another flaw identified as CVE-2021-1732, to escalate its privileges. These dual vulnerabilities provide the malware with an effective avenue for intrusion and control over affected systems. The exploitation of these flaws poses a significant threat to the integrity, confidentiality, and availability of information and resources on compromised systems. However, protection against this threat is provided by Check Point Threat Emulation and Intrusion Prevention System (IPS). These security solutions are designed to identify and neutralize threats posed by vulnerabilities like CVE-2020-1054 and CVE-2021-1732. By implementing these protective measures, organizations can significantly reduce the risk of compromise and maintain the security of their systems and data.
What's your take? (Question 1 of 2)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Malware
Exploits
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
CVE-2021-1732Unspecified
1
CVE-2021-1732 is a software vulnerability, specifically a flaw in the design or implementation of Microsoft's Windows 10 systems. This vulnerability exposes the system to an elevation of privilege threat, where an attacker could potentially gain higher-level permissions on the system and carry out m
Source Document References
Information about the CVE-2020-1054 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
Checkpoint
a year ago
Raspberry Robin: Anti-Evasion How-To & Exploit Analysis - Check Point Research
InfoSecurity-magazine
a year ago
Raspberry Robin Adopts Unique Evasion Techniques
CERT-EU
a year ago
24th April – Threat Intelligence Report - Check Point Research