CVE-2019-0551

Name of the Vulnerable Software and Affected Versions: Windows Hyper-V versions (affected versions not specified) Windows Server 2016 Windows Server 2019 Windows 10 Windows 10 Servers

Description: A remote code execution issue exists due to improper input validation from an authenticated user on a guest operating system. This allows remote attackers to execute arbitrary code and affect the system. The vulnerability is related to deficiencies in the authentication procedure in the guest operating system.

Recommendations: For Windows Server 2016, update the system to prevent exploitation. For Windows Server 2019, apply the necessary security patches to resolve the issue. For Windows 10, ensure that all security updates are installed to mitigate the risk. For Windows 10 Servers, consider restricting access to the Hyper-V system until a patch is available. As a temporary workaround, consider disabling the vulnerable authentication procedure in the guest operating system until a patch is available.