CVE-2020-0865: 
vulnerability analysis and mitigation

An elevation of privilege vulnerability (CVE-2020-0865) exists when the Windows Work Folder Service improperly handles file operations. This vulnerability was disclosed in March 2020 and affects multiple versions of Microsoft Windows operating systems. The vulnerability is unique from several other related vulnerabilities including CVE-2020-0777, CVE-2020-0797, CVE-2020-0800, CVE-2020-0864, CVE-2020-0866, and CVE-2020-0897 (MITRE, NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (High) with the following vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. This indicates that the vulnerability requires local access, low attack complexity, low privileges, and no user interaction to exploit. The vulnerability can potentially impact the confidentiality, integrity, and availability of the affected system (NVD).

If successfully exploited, this vulnerability could allow an attacker to gain elevated privileges on the affected system. An attacker who successfully exploits this vulnerability could gain the same user rights as the local user, with potentially greater impact on users with administrative rights (MITRE).

Microsoft has released security updates to address this vulnerability. Users should apply the appropriate security updates for their affected Windows systems. The security update addresses the vulnerability by correcting how the Windows Work Folder Service handles file operations (MITRE).