CVE-2020-1040

Published: Jul 14, 2020

Modified: Oct 21, 2025

PUBLISHED

Description

A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1032, CVE-2020-1036, CVE-2020-1041, CVE-2020-1042, CVE-2020-1043.

Vendor	Product	Versions
Microsoft	Windows Server	affected `2016` affected `2016 (Core installation)` affected `2008 R2 for x64-based Systems Service Pack 1` affected `2008 R2 for x64-based Systems Service Pack 1 (Core installation)` affected `2012` +3 more versions

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1040

x_refsource_MISC

https://nvidia.custhelp.com/app/answers/detail/a_id/5044

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-1040

Description

Affected Products

References