NSA Discovered Critical Vulnerability Affecting Windows 10
The National Security Agency (NSA) discovered a critical vulnerability (CVE-2020-0601) affecting Microsoft Windows®1 cryptographic functionality.
According to the NSA, the certificate validation vulnerability allowed an attacker to undermine how Windows verifies cryptographic trust and could enable remote code execution. The vulnerability affected Windows 10 and Windows Server 2016/2019, as well as applications that rely on Windows for trust functionality.