CVE-2019-1082
Description
An elevation of privilege vulnerability exists in Microsoft Windows where a certain DLL, with Local Service privilege, is vulnerable to race planting a customized DLL.An attacker who successfully exploited this vulnerability could potentially elevate privilege to SYSTEM.The update addresses this vulnerability by requiring SYSTEM privileges for a certain DLL., aka Microsoft Windows Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2019-1074.
Risk Information
Base Score
7.4
MODERATE
Vector
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
EPSS Score
Exploitation Probability
0.372
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| 2019-07 Security Only Quality Update for Windows 7 for x86-based Systems (KB4507456) | Windows |
| 2019-07 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB4507456) | Windows |
| 2019-07 Security Only Quality Update for Windows 7 for x64-based Systems (KB4507456) | Windows |
| 2019-07 Security Only Quality Update for Windows 8.1 for x64-based Systems (KB4507457) | Windows |
| 2019-07 Security Only Quality Update for Windows Server 2012 R2 for x64-based Systems (KB4507457) | Windows |
| 2019-07 Security Only Quality Update for Windows 8.1 for x86-based Systems (KB4507457) | Windows |
| 2019-07 Security Only Quality Update for Windows Server 2012 for x64-based Systems (KB4507464) | Windows |
| 2019-07 Security Monthly Quality Rollup for Windows 7 for x86-based Systems (KB4507449) | Windows |
| 2019-07 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB4507449) | Windows |
| 2019-07 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB4507449) | Windows |
| 2019-07 Cumulative Update for Windows Server 2016 for x64-based Systems (KB4507460) | Windows |
| 2019-07 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB4507460) | Windows |
| 2019-07 Cumulative Update for Windows 10 Version 1607 for x86-based Systems (KB4507460) | Windows |
| 2019-07 Security Monthly Quality Rollup for Windows 8.1 for x86-based Systems (KB4507448) | Windows |
| 2019-07 Security Monthly Quality Rollup for Windows 8.1 for x64-based Systems (KB4507448) | Windows |
| 2019-07 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems (KB4507448) | Windows |
| 2019-07 Cumulative Update for Windows 10 Version 1507 for x86-based Systems (KB4507458) | Windows |
| 2019-07 Cumulative Update for Windows 10 Version 1507 for x64-based Systems (KB4507458) | Windows |
| 2019-07 Security Monthly Quality Rollup for Windows Server 2012 for x64-based Systems (KB4507462) | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-26955 | 2019-07 Security Only Quality Update for Windows 7 for x86-based Systems (KB4507456) (CVE-2019-1132) |
| PATCH-26956 | 2019-07 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB4507456) (CVE-2019-1132) |
| PATCH-26957 | 2019-07 Security Only Quality Update for Windows 7 for x64-based Systems (KB4507456) (CVE-2019-1132) |
| PATCH-26958 | 2019-07 Security Only Quality Update for Windows 8.1 for x64-based Systems (KB4507457) (CVE-2019-0880) |
| PATCH-26959 | 2019-07 Security Only Quality Update for Windows Server 2012 R2 for x64-based Systems (KB4507457) (CVE-2019-0880) |
| PATCH-26960 | 2019-07 Security Only Quality Update for Windows 8.1 for x86-based Systems (KB4507457) (CVE-2019-0880) |
| PATCH-26961 | 2019-07 Security Only Quality Update for Windows Server 2012 for x64-based Systems (KB4507464) (CVE-2019-0880) |
| PATCH-26974 | 2019-07 Security Monthly Quality Rollup for Windows 7 for x86-based Systems (KB4507449) (CVE-2019-1132) |
| PATCH-26975 | 2019-07 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB4507449) (CVE-2019-1132) |
| PATCH-26976 | 2019-07 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB4507449) (CVE-2019-1132) |
| PATCH-26983 | 2019-07 Cumulative Update for Windows Server 2016 for x64-based Systems (KB4507460) (CVE-2019-0880) |
| PATCH-26984 | 2019-07 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB4507460) (CVE-2019-0880) |
| PATCH-26985 | 2019-07 Cumulative Update for Windows 10 Version 1607 for x86-based Systems (KB4507460) (CVE-2019-0880) |
| PATCH-26977 | 2019-07 Security Monthly Quality Rollup for Windows 8.1 for x86-based Systems (KB4507448) (CVE-2019-0880) |
| PATCH-26978 | 2019-07 Security Monthly Quality Rollup for Windows 8.1 for x64-based Systems (KB4507448) (CVE-2019-0880) |
| PATCH-26979 | 2019-07 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems (KB4507448) (CVE-2019-0880) |
| PATCH-26986 | 2019-07 Cumulative Update for Windows 10 Version 1507 for x86-based Systems (KB4507458) (CVE-2019-0880) |
| PATCH-26987 | 2019-07 Cumulative Update for Windows 10 Version 1507 for x64-based Systems (KB4507458) (CVE-2019-0880) |
| PATCH-26980 | 2019-07 Security Monthly Quality Rollup for Windows Server 2012 for x64-based Systems (KB4507462) (CVE-2019-0880) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234