With thanks to @n0x08 , I have more details about CVE-2020-0646! Now that's the most interesting one; this one allowed RCE via Workflows again similar to https://www.nccgroup.trust/uk/our-research/technical-advisory-bypassing-workflows-protection-mechanisms-remote-code-execution-on-sharepoint/ … and https://www.nccgroup.trust/uk/our-research/technical-advisory-bypassing-microsoft-xoml-workflows-protection-mechanisms-using-deserialisation-of-untrusted-data/ … but using another technique 
https://twitter.com/irsdl/status/1217872754676043782 …
So my Jan 2020 .NET patches were not as scary as they looked:
CVE-2020-0606: Code Execution using Malicious Annotation Files for Sticky Notes in WPF apps
CVE-2020-0605: Dangerous deserialization in handling XPS files in .NET Framework
CVE-2020-0646 -> I have no idea atm
Prikaži ovu nit
