CVE-2019-0718

Name of the Vulnerable Software and Affected Versions Microsoft Hyper-V (affected versions not specified)

Description A denial of service issue exists due to insufficient input validation on the host server. This could allow a remote attacker to cause a denial of service using a specially crafted application. The attacker must have a privileged account on a guest operating system running as a virtual machine to exploit this issue. The vulnerability can be exploited by running a specially crafted application that causes the host machine to crash.

Recommendations To address the vulnerability, update the system by modifying how virtual machines access the Hyper-V Network Switch. As a temporary workaround, consider restricting access to the Hyper-V Network Switch to minimize the risk of exploitation. Avoid using specially crafted applications that could cause the host machine to crash until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.