CVE-2019-0658

Description

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka Scripting Engine Information Disclosure Vulnerability. This CVE ID is unique from CVE-2019-0648.

Risk Information

Base Score

4.4

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C

EPSS Score

Exploitation Probability

27.849

Associated Vulnerability

Vulnerability	OS Platform
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1803 for x64-based Systems (KB4487017) - Delta	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows Server 2016 (1803) for x64-based Systems (KB4487017) - Delta	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows Server 2016 (1803) for x64-based Systems (KB4487017) - Cumulative	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1803 for x86-based Systems (KB4487017) - Delta	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1803 for x64-based Systems (KB4487017) - Cumulative	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1803 for x86-based Systems (KB4487017) - Cumulative	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows Server 2016 (1709) for x64-based Systems (KB4486996) - Cumulative	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1709 for x86-based Systems (KB4486996) - Delta	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1709 for x64-based Systems (KB4486996) - Delta	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows Server 2016 (1709) for x64-based Systems (KB4486996) - Delta	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1709 for x86-based Systems (KB4486996) - Cumulative	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1709 for x64-based Systems (KB4486996) - Cumulative	Windows
Windows Security Feature Bypass Vulnerability for Windows 10 Version 1809 for x64-based Systems (KB4487044) - Cumulative	Windows
Windows Security Feature Bypass Vulnerability for Windows Server 2019 for x64-based Systems (KB4487044) - Cumulative	Windows
Windows Security Feature Bypass Vulnerability for Windows 10 Version 1809 for x86-based Systems (KB4487044) - Cumulative	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4487020) - Delta	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4487020) - Cumulative	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4487020) - Delta	Windows
.NET Framework and Visual Studio Remote Code Execution Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4487020) - Cumulative	Windows
Microsoft XmlDocument Elevation of Privilege Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4487020)	Windows
Microsoft XmlDocument Elevation of Privilege Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4487020)	Windows
Microsoft XmlDocument Elevation of Privilege Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4487020)	Windows
Microsoft XmlDocument Elevation of Privilege Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4487020)	Windows
Microsoft XmlDocument Elevation of Privilege Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4487020)	Windows
Microsoft XmlDocument Elevation of Privilege Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4487020)	Windows
Microsoft XmlDocument Elevation of Privilege Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4487020)	Windows
Microsoft XmlDocument Elevation of Privilege Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4487020)	Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE

Patch ID	Patch Description
PATCH-26174	2019-02 Delta Update for Windows 10 Version 1803 for x64-based Systems (KB4487017)
PATCH-26175	2019-02 Delta Update for Windows Server 2016 (1803) for x64-based Systems (KB4487017)
PATCH-26176	2019-02 Cumulative Update for Windows Server 2016 (1803) for x64-based Systems (KB4487017)
PATCH-26177	2019-02 Delta Update for Windows 10 Version 1803 for x86-based Systems (KB4487017)
PATCH-26178	2019-02 Cumulative Update for Windows 10 Version 1803 for x64-based Systems (KB4487017)
PATCH-26179	2019-02 Cumulative Update for Windows 10 Version 1803 for x86-based Systems (KB4487017)
PATCH-26168	2019-02 Cumulative Update for Windows Server 2016 (1709) for x64-based Systems (KB4486996)
PATCH-26169	2019-02 Delta Update for Windows 10 Version 1709 for x86-based Systems (KB4486996)
PATCH-26170	2019-02 Delta Update for Windows 10 Version 1709 for x64-based Systems (KB4486996)
PATCH-26171	2019-02 Delta Update for Windows Server 2016 (1709) for x64-based Systems (KB4486996)
PATCH-26172	2019-02 Cumulative Update for Windows 10 Version 1709 for x86-based Systems (KB4486996)
PATCH-26173	2019-02 Cumulative Update for Windows 10 Version 1709 for x64-based Systems (KB4486996)
PATCH-26180	2019-02 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB4487044)
PATCH-26181	2019-02 Cumulative Update for Windows Server 2019 for x64-based Systems (KB4487044)
PATCH-26182	2019-02 Cumulative Update for Windows 10 Version 1809 for x86-based Systems (KB4487044)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234