Microsoft has released an out-of-band patch to fix a Windows 10 spatial data service vulnerability CVE-2020-1441. An attacker could exploit the vulnerability to overwrite or modify a protected file leading to privilege escalation.
According to a new Microsoft advisory, an elevation of privilege vulnerability CVE-2020-1441 exists when the Windows Spatial Data Service improperly handles objects in memory.
The vulnerability impacts Windows 10 Versions 1903 for 32-bit and x64-based systems.
Microsoft released the out-of-band patch nearly two weeks after June 2020 Security Updates.