Lucene search

[email protected]CVE-2019-0573

HistoryJan 08, 2019 - 9:29 p.m.

CVE-2019-0573

2019-01-0821:29:00

CWE-862

[email protected]

web.nvd.nist.gov

cve-2019-0573

elevation of privilege

windows data sharing service

nvd

security vulnerability

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.6 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

59.1%

JSON

An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly handles file operations, aka “Windows Data Sharing Service Elevation of Privilege Vulnerability.” This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers. This CVE ID is unique from CVE-2019-0571, CVE-2019-0572, CVE-2019-0574.

VendorProductVersionCPE
microsoftwindows_server_2016(Server Core installation)cpe:2.3:o:microsoft:windows_server_2016:(Server Core installation):*:*:*:*:*:*:*
microsoftwindows_1032-bit Systemscpe:2.3:o:microsoft:windows_10:32-bit Systems:*:*:*:*:*:*:*
microsoftwindows_10Version 1607 for 32-bit Systemscpe:2.3:o:microsoft:windows_10:Version 1607 for 32-bit Systems:*:*:*:*:*:*:*
microsoftwindows_10Version 1607 for x64-based Systemscpe:2.3:o:microsoft:windows_10:Version 1607 for x64-based Systems:*:*:*:*:*:*:*
microsoftwindows_10Version 1703 for 32-bit Systemscpe:2.3:o:microsoft:windows_10:Version 1703 for 32-bit Systems:*:*:*:*:*:*:*
microsoftwindows_10Version 1703 for x64-based Systemscpe:2.3:o:microsoft:windows_10:Version 1703 for x64-based Systems:*:*:*:*:*:*:*
microsoftwindows_10Version 1709 for 32-bit Systemscpe:2.3:o:microsoft:windows_10:Version 1709 for 32-bit Systems:*:*:*:*:*:*:*
microsoftwindows_10Version 1709 for ARM64-based Systemscpe:2.3:o:microsoft:windows_10:Version 1709 for ARM64-based Systems:*:*:*:*:*:*:*
microsoftwindows_10Version 1709 for x64-based Systemscpe:2.3:o:microsoft:windows_10:Version 1709 for x64-based Systems:*:*:*:*:*:*:*
microsoftwindows_10Version 1803 for 32-bit Systemscpe:2.3:o:microsoft:windows_10:Version 1803 for 32-bit Systems:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows_server_2016	(Server Core installation)	cpe:2.3:o:microsoft:windows_server_2016:(Server Core installation):::::::*
microsoft	windows_10	32-bit Systems	cpe:2.3:o:microsoft:windows_10:32-bit Systems:::::::*
microsoft	windows_10	Version 1607 for 32-bit Systems	cpe:2.3:o:microsoft:windows_10:Version 1607 for 32-bit Systems:::::::*
microsoft	windows_10	Version 1607 for x64-based Systems	cpe:2.3:o:microsoft:windows_10:Version 1607 for x64-based Systems:::::::*
microsoft	windows_10	Version 1703 for 32-bit Systems	cpe:2.3:o:microsoft:windows_10:Version 1703 for 32-bit Systems:::::::*
microsoft	windows_10	Version 1703 for x64-based Systems	cpe:2.3:o:microsoft:windows_10:Version 1703 for x64-based Systems:::::::*
microsoft	windows_10	Version 1709 for 32-bit Systems	cpe:2.3:o:microsoft:windows_10:Version 1709 for 32-bit Systems:::::::*
microsoft	windows_10	Version 1709 for ARM64-based Systems	cpe:2.3:o:microsoft:windows_10:Version 1709 for ARM64-based Systems:::::::*
microsoft	windows_10	Version 1709 for x64-based Systems	cpe:2.3:o:microsoft:windows_10:Version 1709 for x64-based Systems:::::::*
microsoft	windows_10	Version 1803 for 32-bit Systems	cpe:2.3:o:microsoft:windows_10:Version 1803 for 32-bit Systems:::::::*