An elevation of privilege vulnerability exists when the Microsoft Store Runtime improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka ‘Microsoft Store Runtime Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2020-0766.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1146
Reference (s):
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1146
- URL: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1146