Description
External control of file name or path in Windows Telephony Service allows an authorized attacker to elevate privileges over an adjacent network.
Related CPE's
o
microsoft
windows_10_1607
2
o
microsoft
windows_10_1809
2
Vulnerable
Vulnerable
Vulnerable
Vulnerable
Vulnerable
o
microsoft
windows_server_2008
3
o
microsoft
windows_server_2012
2
Vulnerable
Vulnerable
Vulnerable
Vulnerable
Vulnerable
CVSS impact metrics
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8 · High
Information
Source identifier
Vulnerability status
Analyzed
Published
2026-01-13T18:16:20.003Z
3 days agoLast modified
2026-01-16T15:06:39.857Z
3 hours ago