Lucene search

K
cvelistMicrosoftCVELIST:CVE-2019-1133
HistoryAug 14, 2019 - 8:55 p.m.

CVE-2019-1133 Scripting Engine Memory Corruption Vulnerability

2019-08-1420:55:02
microsoft
www.cve.org
6
scripting engine
memory corruption
vulnerability

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

AI Score

8.5

Confidence

High

EPSS

0.021

Percentile

89.3%

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Internet Explorer 10",
    "cpes": [
      "cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows Server 2012"
    ],
    "versions": [
      {
        "version": "1.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Internet Explorer 9",
    "cpes": [
      "cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows Server 2008 for 32-bit Systems Service Pack 2",
      "Windows Server 2008 for x64-based Systems Service Pack 2"
    ],
    "versions": [
      {
        "version": "1.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Internet Explorer 11",
    "cpes": [
      "cpe:2.3:a:microsoft:internet_explorer:11:-:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows 10 Version 1703 for 32-bit Systems",
      "Windows 10 Version 1703 for x64-based Systems",
      "Windows 10 Version 1803 for 32-bit Systems",
      "Windows 10 Version 1803 for x64-based Systems",
      "Windows 10 Version 1803 for ARM64-based Systems",
      "Windows 10 Version 1809 for 32-bit Systems",
      "Windows 10 Version 1809 for x64-based Systems",
      "Windows 10 Version 1809 for ARM64-based Systems",
      "Windows Server 2019",
      "Windows 10 Version 1709 for 32-bit Systems",
      "Windows 10 Version 1709 for x64-based Systems",
      "Windows 10 Version 1709 for ARM64-based Systems",
      "Windows 10 Version 1903 for 32-bit Systems",
      "Windows 10 Version 1903 for x64-based Systems",
      "Windows 10 Version 1903 for ARM64-based Systems",
      "Windows 10 for 32-bit Systems",
      "Windows 10 for x64-based Systems",
      "Windows 10 Version 1607 for 32-bit Systems",
      "Windows 10 Version 1607 for x64-based Systems",
      "Windows Server 2016",
      "Windows 7 for 32-bit Systems Service Pack 1",
      "Windows 7 for x64-based Systems Service Pack 1",
      "Windows 8.1 for 32-bit systems",
      "Windows 8.1 for x64-based systems",
      "Windows RT 8.1",
      "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
      "Windows Server 2012",
      "Windows Server 2012 R2"
    ],
    "versions": [
      {
        "version": "1.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

AI Score

8.5

Confidence

High

EPSS

0.021

Percentile

89.3%