Vulnerability in Microsoft Onedrive
CVE-2020-1465
An elevation of privilege vulnerability exists in Microsoft OneDrive that allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft OneDrive Elevation of…
EPSS: 0.008 (53.2th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Microsoft Onedrive
- Microsoft Onedrive For Windows — versions unspecified
References
- secure@microsoft.com (Patch, x_refsource_MISC, Vendor Advisory)
Frequently asked questions
- What is CVE-2020-1465?
- CVE-2020-1465 is a high-severity vulnerability in Microsoft Onedrive. CVSS score: 7.8/10. Published 2020-07-14.
- How severe is CVE-2020-1465?
- High severity. CVSS v3 base score is 7.8 out of 10.