CVE-2020-0670: 
vulnerability analysis and mitigation

CVE-2020-0670 is an elevation of privilege vulnerability that exists when the Windows kernel fails to properly handle objects in memory. The vulnerability was disclosed on February 11, 2020, affecting various versions of Microsoft Windows including Windows 10 (versions 1607, 1709, 1803, 1809, 1903, 1909) and Windows Server 2016 (NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. Under CVSS v2.0, it received a base score of 7.2 (HIGH) with the vector (AV:L/AC:L/Au:N/C:C/I:C/A:C). The vulnerability requires local access and low privileges to exploit, but no user interaction is needed (NVD).

If successfully exploited, this vulnerability could allow an attacker to gain elevated privileges on the affected system. The high CVSS scores for confidentiality, integrity, and availability impacts indicate that successful exploitation could result in complete compromise of the system's security (NVD).

Microsoft has released security updates to address this vulnerability. Users should apply the appropriate patches through Windows Update to protect their systems (MSRC Advisory).