Microsoft Patch Tuesday, August 2020 Edition

Microsoft released updates to plug at least 120 security holes in its Windows operating systems and supported software, including two newly discovered vulnerabilities that are actively being exploited. Yes, good people of the Windows world, it’s time once again to use XEOX!

With the release of the August 2020 Patch Tuesday security updates, Microsoft has released one Servicing Stack Update for Windows 10 advisory and fixes for 120 vulnerabilities in Microsoft products.Of these vulnerabilities, 17 are classified as Critical, and 103 are classified as Important.

This release is the third-largest Patch Tuesday update ever released by Microsoft, with the second-largest being 123 fixes in July 2020, and the largest being issued in June 2020.

For information about the non-security Windows updates, you can read about today’s Windows 10 security updates on https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2020-Aug

Get back full control on windows update by using XEOX Job Editor.

automated updates

The August 2020 Patch Tuesday Security Updates

Below is the full list of resolved vulnerabilities and released advisories in the August 2020 Patch Tuesday updates. To access the full description of each vulnerability and the systems that it affects, you can view the full report here.

NameCVETITLESeverity
.NET FrameworkCVE-2020-1476ASP.NET and .NET Elevation of Privilege VulnerabilityImportant
.NET FrameworkCVE-2020-1046.NET Framework Remote Code Execution VulnerabilityCritical
ASP.NETCVE-2020-1597ASP.NET Core Denial of Service VulnerabilityImportant
Internet ExplorerCVE-2020-1567MSHTML Engine Remote Code Execution VulnerabilityCritical
Microsoft DynamicsCVE-2020-1591Microsoft Dynamics 365 (On-Premise) Cross Site Scripting VulnerabilityImportant
Microsoft EdgeCVE-2020-1569Microsoft Edge Memory Corruption VulnerabilityImportant
Microsoft EdgeCVE-2020-1568Microsoft Edge PDF Remote Code Execution VulnerabilityCritical
Microsoft Graphics ComponentCVE-2020-1562Microsoft Graphics Components Remote Code Execution VulnerabilityImportant
Microsoft Graphics ComponentCVE-2020-1577DirectWrite Information Disclosure VulnerabilityImportant
Microsoft Graphics ComponentCVE-2020-1561Microsoft Graphics Components Remote Code Execution VulnerabilityImportant
Microsoft Graphics ComponentCVE-2020-1510Win32k Information Disclosure VulnerabilityImportant
Microsoft Graphics ComponentCVE-2020-1529Windows GDI Elevation of Privilege VulnerabilityImportant
Microsoft JET Database EngineCVE-2020-1473Jet Database Engine Remote Code Execution VulnerabilityImportant
Microsoft JET Database EngineCVE-2020-1558Jet Database Engine Remote Code Execution VulnerabilityImportant
Microsoft JET Database EngineCVE-2020-1557Jet Database Engine Remote Code Execution VulnerabilityImportant
Microsoft JET Database EngineCVE-2020-1564Jet Database Engine Remote Code Execution VulnerabilityImportant
Microsoft OfficeCVE-2020-1483Microsoft Outlook Memory Corruption VulnerabilityCritical
Microsoft OfficeCVE-2020-1504Microsoft Excel Remote Code Execution VulnerabilityImportant
Microsoft OfficeCVE-2020-1503Microsoft Word Information Disclosure VulnerabilityImportant
Microsoft OfficeCVE-2020-1495Microsoft Excel Remote Code Execution VulnerabilityImportant
Microsoft OfficeCVE-2020-1494Microsoft Excel Remote Code Execution VulnerabilityImportant
Microsoft OfficeCVE-2020-1493Microsoft Outlook Information Disclosure VulnerabilityImportant
Microsoft OfficeCVE-2020-1496Microsoft Excel Remote Code Execution VulnerabilityImportant
Microsoft OfficeCVE-2020-1502Microsoft Word Information Disclosure VulnerabilityImportant
Microsoft OfficeCVE-2020-1498Microsoft Excel Remote Code Execution VulnerabilityImportant
Microsoft OfficeCVE-2020-1497Microsoft Excel Information Disclosure VulnerabilityImportant
Microsoft OfficeCVE-2020-1581Microsoft Office Click-to-Run Elevation of Privilege VulnerabilityImportant
Microsoft OfficeCVE-2020-1563Microsoft Office Remote Code Execution VulnerabilityImportant
Microsoft OfficeCVE-2020-1582Microsoft Access Remote Code Execution VulnerabilityImportant
Microsoft OfficeCVE-2020-1583Microsoft Word Information Disclosure VulnerabilityImportant
Microsoft Office SharePointCVE-2020-1505Microsoft SharePoint Information Disclosure VulnerabilityImportant
Microsoft Office SharePointCVE-2020-1573Microsoft Office SharePoint XSS VulnerabilityImportant
Microsoft Office SharePointCVE-2020-1499Microsoft SharePoint Spoofing VulnerabilityImportant
Microsoft Office SharePointCVE-2020-1500Microsoft SharePoint Spoofing VulnerabilityImportant
Microsoft Office SharePointCVE-2020-1580Microsoft Office SharePoint XSS VulnerabilityImportant
Microsoft Office SharePointCVE-2020-1501Microsoft SharePoint Spoofing VulnerabilityImportant
Microsoft Scripting EngineCVE-2020-1570Scripting Engine Memory Corruption VulnerabilityCritical
Microsoft Scripting EngineCVE-2020-1555Scripting Engine Memory Corruption VulnerabilityCritical
Microsoft Scripting EngineCVE-2020-1380Scripting Engine Memory Corruption VulnerabilityCritical
Microsoft Video ControlCVE-2020-1492Media Foundation Memory Corruption VulnerabilityCritical
Microsoft WindowsCVE-2020-1485Windows Image Acquisition Service Information Disclosure VulnerabilityImportant
Microsoft WindowsCVE-2020-1587Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1551Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1484Windows Work Folders Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1489Windows CSC Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1584Windows dnsrslvr.dll Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1486Windows Kernel Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1488Windows AppX Deployment Extensions Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1490Windows Storage Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1515Windows Telephony Server Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1513Windows CSC Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1553Windows Runtime Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1552Windows Work Folder Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1566Windows Kernel Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1579Windows Function Discovery SSDP Provider Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1512Windows State Repository Service Information Disclosure VulnerabilityImportant
Microsoft WindowsCVE-2020-1511Connected User Experiences and Telemetry Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1480Windows GDI Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1542Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1543Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1540Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1541Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1544Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1547Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1519Windows UPnP Device Host Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1545Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1546Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1539Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1528Windows Radio Manager API Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1530Windows Remote Access Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1526Windows Network Connection Broker Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1527Windows Custom Protocol Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1534Windows Backup Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1537Windows Remote Access Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1520Windows Font Driver Host Remote Code Execution VulnerabilityImportant
Microsoft WindowsCVE-2020-1535Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1536Windows Backup Engine Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1470Windows Work Folders Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1509Local Security Authority Subsystem Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1459Windows ARM Information Disclosure VulnerabilityImportant
Microsoft WindowsCVE-2020-1538Windows UPnP Device Host Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1475Windows Server Resource Management Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1464Windows Spoofing VulnerabilityImportant
Microsoft WindowsCVE-2020-1467Windows Hard Link Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1550Windows CDP User Components Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1517Windows File Server Resource Management Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1518Windows File Server Resource Management Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1516Windows Work Folders Service Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1549Windows CDP User Components Elevation of Privilege VulnerabilityImportant
Microsoft WindowsCVE-2020-1383Windows RRAS Service Information Disclosure VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2020-1574Microsoft Windows Codecs Library Remote Code Execution VulnerabilityCritical
Microsoft Windows Codecs LibraryCVE-2020-1560Microsoft Windows Codecs Library Remote Code Execution VulnerabilityCritical
Microsoft Windows Codecs LibraryCVE-2020-1585Microsoft Windows Codecs Library Remote Code Execution VulnerabilityCritical
NetlogonCVE-2020-1472Netlogon Elevation of Privilege VulnerabilityCritical
SQL ServerCVE-2020-1455Microsoft SQL Server Management Studio Denial of Service VulnerabilityImportant
Visual StudioCVE-2020-0604Visual Studio Code Remote Code Execution VulnerabilityImportant
Windows AICVE-2020-1521Windows Speech Runtime Elevation of Privilege VulnerabilityImportant
Windows AICVE-2020-1522Windows Speech Runtime Elevation of Privilege VulnerabilityImportant
Windows AICVE-2020-1524Windows Speech Shell Components Elevation of Privilege VulnerabilityImportant
Windows COMCVE-2020-1474Windows Image Acquisition Service Information Disclosure VulnerabilityImportant
Windows KernelCVE-2020-1578Windows Kernel Information Disclosure VulnerabilityImportant
Windows KernelCVE-2020-1417Windows Kernel Elevation of Privilege VulnerabilityImportant
Windows KernelCVE-2020-1479DirectX Elevation of Privilege VulnerabilityImportant
Windows MediaCVE-2020-1379Media Foundation Memory Corruption VulnerabilityCritical
Windows MediaCVE-2020-1554Media Foundation Memory Corruption VulnerabilityCritical
Windows MediaCVE-2020-1339Windows Media Remote Code Execution VulnerabilityCritical
Windows MediaCVE-2020-1525Media Foundation Memory Corruption VulnerabilityCritical
Windows MediaCVE-2020-1487Media Foundation Information Disclosure VulnerabilityImportant
Windows Media PlayerCVE-2020-1478Media Foundation Memory Corruption VulnerabilityImportant
Windows Media PlayerCVE-2020-1477Media Foundation Memory Corruption VulnerabilityCritical
Windows Print Spooler ComponentsCVE-2020-1337Windows Print Spooler Elevation of Privilege VulnerabilityImportant
Windows RDPCVE-2020-1466Windows Remote Desktop Gateway (RD Gateway) Denial of Service VulnerabilityImportant
Windows RegistryCVE-2020-1377Windows Registry Elevation of Privilege VulnerabilityImportant
Windows RegistryCVE-2020-1378Windows Registry Elevation of Privilege VulnerabilityImportant
Windows ShellCVE-2020-1565Windows Elevation of Privilege VulnerabilityImportant
Windows ShellCVE-2020-1531Windows Accounts Control Elevation of Privilege VulnerabilityImportant
Windows Update StackCVE-2020-1571Windows Setup Elevation of Privilege VulnerabilityImportant
Windows Update StackCVE-2020-1548Windows WaasMedic Service Information Disclosure VulnerabilityImportant
Windows WalletServiceCVE-2020-1556Windows WalletService Elevation of Privilege VulnerabilityImportant
Windows WalletServiceCVE-2020-1533Windows WalletService Elevation of Privilege VulnerabilityImportant

More Information:

https://krebsonsecurity.com/2020/08/microsoft-patch-tuesday-august-2020-edition/
https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2020-Aug
https://wuinstall.com/index.php/blog-list/item/24-how-to-force-windows-2004-feature-upgrade-os-build-19041-to-install-using-the-command-line.html
https://windowsreport.com/windows-10-patch-tuesday-update-history/

KB4566782
KB4565351
KB4565349
KB4571709
KB4571741
KB4571689
KB4571694
KB4571692