CISA description
Microsoft Update Notification Manager contains an unspecified vulnerability that allows for privilege escalation.
CVE-2020-0638 Ransomware
Microsoft · Update Notification Manager
Microsoft Update Notification Manager Privilege Escalation Vulnerability
Required action
Apply updates per vendor instructions.
Notes & references
Where this lands in 800-53
Vulnerability data triggers these controls during assessment and continuous monitoring.