Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMicrosoftCVE-2019-0717
HistoryAug 14, 2019 - 9:15 p.m.

CVE-2019-0717

2019-08-1421:15:12
CWE-20
microsoft
web.nvd.nist.gov
68
microsoft hyper-v
network switch
denial of service
vulnerability
cve-2019-0717
nvd

CVSS2

5.5

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:S/C:N/I:N/A:C

CVSS3

5.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

45.0%

JSON

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.
To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application that causes a host machine to crash.
The update addresses the vulnerability by modifying how virtual machines access the Hyper-V Network Switch.

Affected configurations

Nvd
Vulners
Node
microsoftwindows_10Match1809x64
OR
microsoftwindows_10Match1903x64
OR
microsoftwindows_server_2016Match1903
OR
microsoftwindows_server_2019Match-
VendorProductVersionCPE
microsoftwindows_101809cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:x64:*
microsoftwindows_101903cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:x64:*
microsoftwindows_server_20161903cpe:2.3:o:microsoft:windows_server_2016:1903:*:*:*:*:*:*:*
microsoftwindows_server_2019-cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Windows 10 Version 1809",
    "cpes": [
      "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows Server 2019",
    "cpes": [
      "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows Server 2019 (Server Core installation)",
    "cpes": [
      "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows 10 Version 1903 for x64-based Systems",
    "cpes": [
      "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows Server, version 1903 (Server Core installation)",
    "cpes": [
      "cpe:2.3:o:microsoft:windows_server_1903:*:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Related

cvelist 1
symantec 1
mscve 1
nvd 1
prion 5
kaspersky 1
mskb 2
openvas 2
nessus 2
talosblog 1
cvelist
cvelist
CVE-2019-0717 Windows Hyper-V Denial of Service Vulnerability
2019-08-14 20:55:01
symantec
symantec
Microsoft Windows Hyper-V CVE-2019-0717 Denial of Service Vulnerability
2019-08-13 00:00:00
mscve
mscve
Windows Hyper-V Denial of Service Vulnerability
2019-08-13 07:00:00
nvd
nvd
CVE-2019-0717
2019-08-14 21:15:12
prion
prion
Denial of service
2019-08-14 21:15:00
Denial of service
2019-08-14 21:15:00
Denial of service
2019-08-14 21:15:00
kaspersky
kaspersky
KLA11534 Multiple vulnerabilities in Microsoft Windows
2019-08-13 00:00:00
mskb
mskb
August 13, 2019—KB4512508 (OS Build 18362.295)
2019-08-13 07:00:00
August 13, 2019—KB4511553 (OS Build 17763.678)
2019-08-13 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4512508)
2019-08-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4511553)
2019-08-14 00:00:00
nessus
nessus
KB4512508: Windows 10 Version 1903 August 2019 Security Update
2019-08-13 00:00:00
KB4511553: Windows 10 Version 1809 and Windows Server 2019 August 2019 Security Update
2019-08-13 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday — Aug. 2019: Vulnerability disclosures and Snort coverage
2019-08-14 09:55:35

CVSS2

5.5

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:S/C:N/I:N/A:C

CVSS3

5.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

45.0%

JSON
Related for CVE-2019-0717
cvelist1symantec1mscve1nvd1prion5kaspersky1mskb2openvas2nessus2talosblog1