KEV Entry: CVE-2020-1472

Entry Details

Confirmed Exploited

Vulnerability ID

CVE-2020-1472

Status Updated At

2021-11-03 00:00 UTC

Timestamps

First Seen At

2021-11-03

Asserted At

2021-11-03

Scope

Notes

KEVIntel entry: Netlogon Elevation of Privilege Vulnerability | Affected: Microsoft / Windows Server version 2004, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server, version 1909 (Server Core installation), Windows Server, version 1903 (Server Core installation), Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation), Windows Server version 20H2 | CVSS: 5.5 (MEDIUM) | EPSS: 0.99512 | Used in malware: yes | Not yet in CISA KEV: False

References

{'id': 'CVE-2020-1472', 'url': 'https://www.cve.org/CVERecord?id=CVE-2020-1472'}
{'id': 'kevintel', 'url': 'https://kevintel.com/vuln/CVE-2020-1472'}

Entry UUID

22aff333-d8d2-46db-aae7-2f8aa6d64ae2

Catalog Origin UUID

caeb2787-0d58-4236-9039-7c86c3e566f3

Created

2026-06-19 12:48 UTC

Last Updated

2026-06-19 12:48 UTC

Evidence

1

Type Source Signal Confidence Details GCVE Metadata

Type	Source	Signal	Confidence	Details	GCVE Metadata
public_report	kevintel	confirmed_compromise	0.70	View details { "added_date": "2021-11-03T00:00:00.000Z", "ahead_of_cisa_kev": null, "cvss_score": 5.5, "cvss_severity": "MEDIUM", "epss_percentile": 0.99939, "epss_score": 0.99512, "feed": "KEVIntel (kevintel.com)", "not_yet_in_cisa_kev": false, "product": "Windows Server version 2004, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server, version 1909 (Server Core installation), Windows Server, version 1903 (Server Core installation), Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation), Windows Server version 20H2", "title": "Netlogon Elevation of Privilege Vulnerability", "used_in_malware": "yes", "vendor": "Microsoft" }	-

public_report

kevintel

confirmed_compromise

0.70

View details

{
  "added_date": "2021-11-03T00:00:00.000Z",
  "ahead_of_cisa_kev": null,
  "cvss_score": 5.5,
  "cvss_severity": "MEDIUM",
  "epss_percentile": 0.99939,
  "epss_score": 0.99512,
  "feed": "KEVIntel (kevintel.com)",
  "not_yet_in_cisa_kev": false,
  "product": "Windows Server version 2004, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server, version 1909 (Server Core installation), Windows Server, version 1903 (Server Core installation), Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation), Windows Server version 20H2",
  "title": "Netlogon Elevation of Privilege Vulnerability",
  "used_in_malware": "yes",
  "vendor": "Microsoft"
}

-

Export Options

JSON Object JSON API View Full Catalog