PT-2019-1128 · Microsoft · Windows 10 Servers+4
Published
2019-01-08
·
Updated
2019-01-14
·
CVE-2019-0550
CVSS v3.1
8.4
High
| Vector | AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
Windows Hyper-V versions (affected versions not specified)
Windows 10 Servers (affected versions not specified)
Windows 10 (affected versions not specified)
Windows Server 2019 (affected versions not specified)
Description:
A remote code execution issue exists due to improper input validation from an authenticated user on a guest operating system. This allows remote attackers to execute arbitrary code and affect the system. The vulnerability is related to deficiencies in the authentication procedure in the guest operating system.
Recommendations:
For Windows Hyper-V, consider restricting access to authenticated users on guest operating systems until a fix is available.
For Windows 10 Servers, Windows 10, and Windows Server 2019, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Windows
Windows 10
Windows 10 Servers
Windows Hyper-V
Windows Server 2019