CVE-2020-1170: 
Microsoft System Center Endpoint Protection vulnerability analysis and mitigation

CVE-2020-1170 is an elevation of privilege vulnerability that exists in Windows Defender. The vulnerability was discovered in 2019 and publicly disclosed in June 2020. The issue affects multiple Microsoft products including Windows Defender, Windows 10 (various versions), Microsoft Forefront Endpoint Protection 2010, Microsoft Security Essentials, and System Center Endpoint Protection (NVD).

The vulnerability exists in Windows Defender that leads to arbitrary file deletion on the system. It received a CVSS v3.1 Base Score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. The vulnerability is classified under CWE-732 (Incorrect Permission Assignment for Critical Resource) (NVD).

If successfully exploited, this vulnerability could allow an attacker to gain elevated privileges on the affected system. The vulnerability affects the confidentiality, integrity, and availability of the system, as indicated by the high ratings in all three categories in the CVSS score (NVD).

Microsoft has released security updates to address this vulnerability. Users are advised to apply the appropriate patches through Windows Update. The fix was included in the December 2020 security updates (Microsoft Advisory).