Today’s VERT Alert addresses Microsoft’s August 2020 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-899 on Wednesday, August 12th.In-The-Wild & Disclosed CVEsCVE-2020-1464A vulnerability exists in the way that Windows validates file signatures. An attacker could load improperly signed files by bypassing security features that validate these signatures. This attack is currently seeing active exploitation.Microsoft has rated this as a 0 (Exploitation Detected) on the latest software release on the Exploitability Index.CVE-2020-1380A memory corruption vulnerability exists in Internet Explorer’s scripting engine that could allow an attacker to compromise a system in the context of the current user.Microsoft has rated this as a 0 (Exploitation Detected) on the latest software release on the Exploitability Index.CVE Breakdown by TagWhile historical Microsoft Security Bulletin groupings are gone, Microsoft vulnerabilities are tagged with an identifier. This list provides a breakdown of the CVEs on a per tag basis.Other InformationNo advisories were released alongside the August Security Guidance.
Support the originator by clicking the read the rest link below.
