Login Sign Up

CVE-2020-1033

4.0 MEDIUM

📋 TL;DR

CVE-2020-1033 is a Windows kernel information disclosure vulnerability that allows authenticated attackers to read kernel memory contents. This could leak sensitive information like passwords, encryption keys, or system details that could enable further attacks. All Windows systems with unpatched kernels are affected.

💻 Affected Systems

Products:
  • Microsoft Windows
Versions: Multiple Windows versions - check Microsoft advisory for specifics
Operating Systems: Windows 10, Windows Server 2016, Windows Server 2019
Default Config Vulnerable: ⚠️ Yes
Notes: All default configurations of affected Windows versions are vulnerable. Requires authenticated user access.

📦 What is this software?

Windows 10 by Microsoft

View all CVEs affecting Windows 10 →

Windows 10 by Microsoft

View all CVEs affecting Windows 10 →

Windows 10 by Microsoft

View all CVEs affecting Windows 10 →

Windows 10 by Microsoft

View all CVEs affecting Windows 10 →

Windows 10 by Microsoft

View all CVEs affecting Windows 10 →

Windows 10 by Microsoft

View all CVEs affecting Windows 10 →

Windows 8.1 by Microsoft

View all CVEs affecting Windows 8.1 →

Windows Rt 8.1 by Microsoft

View all CVEs affecting Windows Rt 8.1 →

Windows Server 2012 by Microsoft

View all CVEs affecting Windows Server 2012 →

Windows Server 2016 by Microsoft

View all CVEs affecting Windows Server 2016 →

Windows Server 2016 by Microsoft

View all CVEs affecting Windows Server 2016 →

Windows Server 2016 by Microsoft

View all CVEs affecting Windows Server 2016 →

Windows Server 2019 by Microsoft

View all CVEs affecting Windows Server 2019 →

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker gains access to sensitive kernel memory containing credentials, encryption keys, or system secrets, enabling privilege escalation or lateral movement.

🟠

Likely Case

Information leakage that reveals system details or memory contents, potentially aiding in developing more sophisticated attacks.

🟢

If Mitigated

Minimal impact if proper access controls limit authenticated user privileges and network segmentation is in place.

🌐 Internet-Facing: LOW - Requires authenticated access, making direct internet exploitation unlikely without prior compromise.
🏢 Internal Only: MEDIUM - Internal attackers or compromised accounts could exploit this to gather information for further attacks.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Requires authenticated access and specially crafted application. No public exploit code known.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Microsoft's monthly security updates for July 2020 or later

Vendor Advisory: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1033

Restart Required: Yes

Instructions:

1. Apply Windows Update from July 2020 or later. 2. Install the appropriate security update for your Windows version. 3. Restart the system as required.

🔧 Temporary Workarounds

Restrict User Privileges

windows

Limit authenticated user access to minimize attack surface

🧯 If You Can't Patch

  • Implement strict access controls and least privilege principles
  • Segment networks to limit lateral movement potential

🔍 How to Verify

Check if Vulnerable:

Check Windows Update history for July 2020 security updates or run: wmic qfe list | findstr KB4565483

Check Version:

winver

Verify Fix Applied:

Verify the security update KB4565483 (or equivalent for your version) is installed via Windows Update history

📡 Detection & Monitoring

Log Indicators:

  • Unusual process creation events, unexpected kernel object access attempts

Network Indicators:

  • Not network exploitable - local vulnerability

SIEM Query:

Process creation events from non-standard locations attempting kernel operations

📊 Metadata

CVE ID: CVE-2020-1033
CVSS v3 Score: 4.0 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Published: September 11, 2020
Last Updated: February 23, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON