CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: Aug 10, 2022
High
CISA KEVRansomwareCVE-2020-0796
Microsoft—SMBv3
A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server or client.
Required Action
https://nvd.nist.gov/vuln/detail/CVE-2020-0796
Vulnerability Overview
- Severity
- High
- CISA KEV
- Yes
- Ransomware
- Known
- Published
- Feb 10, 2022
- KEV Added
- Feb 10, 2022
- Due Date
- Aug 10, 2022
- Related Articles
- 0
Vendor
Microsoft
SMBv3