CVE-2020-0659: 
vulnerability analysis and mitigation

An elevation of privilege vulnerability (CVE-2020-0659) exists in the Windows Data Sharing Service when it improperly handles file operations. The vulnerability was discovered and reported to Microsoft, with public disclosure occurring on February 11, 2020. This vulnerability affects multiple versions of Microsoft Windows 10 and Windows Server 2016 (NVD Database).

The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the following vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. Under CVSS v2.0, it received a base score of 4.6 (MEDIUM). The vulnerability requires local access and low privilege level to exploit, but requires no user interaction (NVD Database).

If successfully exploited, this vulnerability could allow an attacker to gain elevated privileges on affected systems. The high CVSS scores for confidentiality, integrity, and availability impact (C:H/I:H/A:H) indicate that successful exploitation could result in complete compromise of system confidentiality, integrity, and availability (NVD Database).

Microsoft has released security updates to address this vulnerability. Users should apply the appropriate patches through Windows Update or Microsoft's security advisory (Microsoft Advisory).