CVE-2020-1455
Global infos:
A denial of service vulnerability exists when Microsoft SQL Server Management Studio (SSMS) improperly handles files. An attacker could exploit the vulnerability to trigger a denial of service. To exploit the vulnerability, an attacker would first require execution on the victim system. The security update addresses the vulnerability by ensuring Microsoft SQL Server Management Studio properly handles files.
CVE Status: Modified
References:
Metrics:
| Attribute | Value |
|---|---|
| Attack Complexity | LOW |
| Attack Vector | LOCAL |
| Availability Impact | LOW |
| Base Score | 5.3 |
| Base Severity | MEDIUM |
| Confidentiality Impact | LOW |
| Integrity Impact | LOW |
| Privileges Required | NONE |
| Scope | UNCHANGED |
| User Interaction | REQUIRED |
| Vector String | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L |
| Exploitability Score | 1.8 |
| Impact Score | 3.4 |
| Source | [email protected] |
| Type | Secondary |