Lucene search
HistoryNov 12, 2019 - 7:15 p.m.
CVE-2019-1391
windows
denial of service
vulnerability
cve-2019-1391
nvd
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
7.2 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.1%
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka ‘Windows Denial of Service Vulnerability’. This CVE ID is unique from CVE-2018-12207.
Affected configurations
Node
microsoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_server
ORmicrosoftwindows_10_1903 for 32-bit systemsMatchunspecified
ORmicrosoftwindows_10_1903 for x64-based systemsMatchunspecified
ORmicrosoftwindows_10_1903 for arm64-based systemsMatchunspecified
ORmicrosoftwindows_server,_version_1903Matchunspecified
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
| microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
| microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
| microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
| microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
| microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
| microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
| microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
| microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
| microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Windows",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "7 for 32-bit Systems Service Pack 1"
},
{
"status": "affected",
"version": "7 for x64-based Systems Service Pack 1"
},
{
"status": "affected",
"version": "8.1 for 32-bit systems"
},
{
"status": "affected",
"version": "8.1 for x64-based systems"
},
{
"status": "affected",
"version": "RT 8.1"
},
{
"status": "affected",
"version": "10 for 32-bit Systems"
},
{
"status": "affected",
"version": "10 for x64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1607 for 32-bit Systems"
},
{
"status": "affected",
"version": "10 Version 1607 for x64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1709 for 32-bit Systems"
},
{
"status": "affected",
"version": "10 Version 1709 for x64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1803 for 32-bit Systems"
},
{
"status": "affected",
"version": "10 Version 1803 for x64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1803 for ARM64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1809 for 32-bit Systems"
},
{
"status": "affected",
"version": "10 Version 1809 for x64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1809 for ARM64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1709 for ARM64-based Systems"
}
]
},
{
"product": "Windows Server",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
},
{
"status": "affected",
"version": "2008 R2 for Itanium-Based Systems Service Pack 1"
},
{
"status": "affected",
"version": "2008 R2 for x64-based Systems Service Pack 1"
},
{
"status": "affected",
"version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
},
{
"status": "affected",
"version": "2012"
},
{
"status": "affected",
"version": "2012 (Core installation)"
},
{
"status": "affected",
"version": "2012 R2"
},
{
"status": "affected",
"version": "2012 R2 (Core installation)"
},
{
"status": "affected",
"version": "2016"
},
{
"status": "affected",
"version": "2016 (Core installation)"
},
{
"status": "affected",
"version": "version 1803 (Core Installation)"
},
{
"status": "affected",
"version": "2019"
},
{
"status": "affected",
"version": "2019 (Core installation)"
},
{
"status": "affected",
"version": "2008 for Itanium-Based Systems Service Pack 2"
},
{
"status": "affected",
"version": "2008 for 32-bit Systems Service Pack 2"
},
{
"status": "affected",
"version": "2008 for x64-based Systems Service Pack 2"
},
{
"status": "affected",
"version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
}
]
},
{
"product": "Windows 10 Version 1903 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Windows 10 Version 1903 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Windows 10 Version 1903 for ARM64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Windows Server, version 1903 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
}
]Related
nvd
nvd
prion
prion
Denial of service
2019-11-12 19:15:00
Input validation
2019-11-14 20:15:00
Code injection
2020-01-17 19:15:00
cvelist
cvelist
mscve
mscve
Windows Denial of Service Vulnerability
2019-11-12 08:00:00
Windows Denial of Service Vulnerability
2019-11-12 08:00:00
symantec
symantec
Microsoft Windows CVE-2019-1391 Denial of Service Vulnerability
2019-11-12 00:00:00
Multiple Intel Processors CVE-2018-12207 Denial of Service Vulnerability
2019-11-12 00:00:00
cve
cve
CVE-2018-12207
2019-11-14 20:15:11
CVE-2019-19339
2020-01-17 19:15:12
xen
xen
x86: Machine Check Error on Page Size Change DoS
2019-11-12 17:53:00
nessus
nessus
Amazon Linux 2 : kernel (ALAS-2019-1366)
2019-11-25 00:00:00
Amazon Linux AMI : kernel (ALAS-2019-1322)
2019-11-25 00:00:00
osv
osv
CVE-2018-12207
2019-11-14 20:15:11
linux-4.9 - security update
2019-11-12 00:00:00
linux - security update
2019-11-12 00:00:00
ubuntucve
ubuntucve
CVE-2018-12207
2019-11-12 00:00:00
CVE-2019-19339
2020-01-17 00:00:00
debiancve
debiancve
CVE-2018-12207
2019-11-14 20:15:11
freebsd
freebsd
FreeBSD -- Machine Check Exception on Page Size Change
2019-11-14 00:00:00
f5
f5
K17269881 : Intel MCE vulnerability CVE-2018-12207
2019-12-04 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-11-13 00:19:59
amazon
amazon
Important: kernel
2019-11-19 17:31:00
Important: kernel
2019-11-19 17:52:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-19:25.mcepsc
2019-11-12 00:00:00
redhatcve
redhatcve
CVE-2018-12207
2020-04-09 10:06:17
CVE-2019-19339
2019-12-11 12:21:10
intel
intel
2019.2 IPU – Intel® Processor Machine Check Error Advisory
2021-05-11 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:3340-1)
2021-04-19 00:00:00
vmware
vmware
redhat
redhat
(RHSA-2019:3843) Important: kernel security update
2019-11-12 20:16:37
(RHSA-2020:0026) Important: kpatch-patch security update
2020-01-06 13:40:28
(RHSA-2019:4245) Important: kpatch-patch security update
2019-12-17 07:11:24
suse
suse
Security update for spectre-meltdown-checker (moderate)
2019-12-31 00:00:00
Security update for qemu (important)
2019-11-14 00:00:00
Security update for xen (important)
2019-11-14 00:00:00
citrix
citrix
Citrix Hypervisor Security Update
2019-11-12 05:00:00
oraclelinux
oraclelinux
gcc security and bug fix update
2020-05-05 00:00:00
Unbreakable Enterprise kernel security update
2019-11-12 00:00:00
microcode_ctl security update
2019-12-04 00:00:00
mskb
mskb
November 12, 2019—KB4525245 (OS Build 15063.2172)
2019-11-12 00:00:00
November 12, 2019—KB4525250 (Security-only update)
2019-11-12 08:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2019-11-20 00:16:53
Updated microcode packages fix security vulnerabilities
2019-12-26 01:57:53
Updated microcode packages fix security vulnerabilities
2019-11-20 00:16:53
centos
centos
bpftool, kernel, perf, python security update
2019-11-14 19:41:10
kernel, perf, python security update
2019-11-14 01:19:32
fedora
fedora
[SECURITY] Fedora 30 Update: kernel-tools-5.3.11-200.fc30
2019-11-13 06:28:06
[SECURITY] Fedora 30 Update: kernel-headers-5.3.11-200.fc30
2019-11-13 06:28:06
[SECURITY] Fedora 30 Update: microcode_ctl-2.1-33.fc30
2019-11-13 06:28:06
virtuozzo
virtuozzo
ubuntu
ubuntu
Linux kernel (Azure) vulnerabilities
2019-11-13 00:00:00
Linux kernel vulnerabilities
2019-11-13 00:00:00
Linux kernel vulnerability
2019-11-13 00:00:00
debian
debian
[SECURITY] [DSA 4564-1] linux security update
2019-11-12 19:17:26
[SECURITY] [DLA 1990-1] linux-4.9 security update
2019-11-13 22:51:44
[SECURITY] [DSA 4564-1] linux security update
2019-11-12 19:17:26
photon
photon
Critical Photon OS Security Update - PHSA-2019-3.0-0041
2019-11-19 00:00:00
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
7.2 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.1%
Related for CVE-2019-1391