This is not so critical.
The RCE which is mentioned is also not as bad as it seems, all that CVE-2020-0601 does is spoofs a sign certificate on executable so it looks like it's signed by a legit company, you still have to double-click the exe or what ever other format that executables come in.
It's the same if I have created a RAT without this exploit, a user would still need to execute it by hand.
The RCE which is mentioned is also not as bad as it seems, all that CVE-2020-0601 does is spoofs a sign certificate on executable so it looks like it's signed by a legit company, you still have to double-click the exe or what ever other format that executables come in.
It's the same if I have created a RAT without this exploit, a user would still need to execute it by hand.