CVE-2020-0913: 
vulnerability analysis and mitigation

CVE-2020-0913 is an elevation of privilege vulnerability that exists when the Windows kernel fails to properly handle objects in memory. This vulnerability was disclosed on April 15, 2020, affecting multiple versions of Microsoft Windows including Windows 10 (versions 1803, 1809, 1903, 1909) and Windows Server 2016/2019 (NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH), with the following vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. The attack requires local access (AV:L) with low attack complexity (AC:L) and low privileges (PR:L). No user interaction (UI:N) is required, and the scope is unchanged (S:U). The vulnerability can result in high impacts to confidentiality, integrity, and availability (C:H/I:H/A:H) (NVD).

If successfully exploited, this vulnerability could allow an attacker to gain elevated privileges on affected systems. The high CVSS scores for confidentiality, integrity, and availability indicate that successful exploitation could result in complete compromise of the target system (NVD).

Microsoft has released security updates to address this vulnerability. Users should apply the appropriate patches through Windows Update or Microsoft's security advisory (Microsoft Advisory).