CVE-2020-1097

The Windows GDI component has a flaw that leads to unauthorized disclosure of its memory contents, resulting in a vulnerability. If successfully exploited, this vulnerability enables an attacker to gather information for further compromising a user's system. There are various methods an attacker can utilize to exploit this vulnerability, including tricking a user into opening a specially created document or visiting an untrusted webpage. To resolve this issue, the update focuses on improving the way the Windows GDI component manages objects stored in memory.