Lucene search
MicrosoftCVELIST:CVE-2019-1385HistoryNov 12, 2019 - 6:52 p.m.
CVE-2019-1385
2019-11-1218:52:54
microsoft
www.cve.org
An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application to elevate privileges.The security update addresses the vulnerability by correcting how AppX Deployment Extensions manages privileges., aka âWindows AppX Deployment Extensions Elevation of Privilege Vulnerabilityâ.
CNA Affected
[
{
"product": "Windows",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "10 Version 1709 for 32-bit Systems"
},
{
"status": "affected",
"version": "10 Version 1709 for x64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1803 for 32-bit Systems"
},
{
"status": "affected",
"version": "10 Version 1803 for x64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1803 for ARM64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1809 for 32-bit Systems"
},
{
"status": "affected",
"version": "10 Version 1809 for x64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1809 for ARM64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1709 for ARM64-based Systems"
}
]
},
{
"product": "Windows Server",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "version 1803 (Core Installation)"
},
{
"status": "affected",
"version": "2019"
},
{
"status": "affected",
"version": "2019 (Core installation)"
}
]
},
{
"product": "Windows 10 Version 1903 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Windows 10 Version 1903 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Windows 10 Version 1903 for ARM64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Windows Server, version 1903 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
}
]Related
zdt
zdt
exploitpack
exploitpack
Microsoft Windows AppXsvc Deployment Extension - Privilege Escalation
2019-11-25 00:00:00
zdi
zdi
nvd
nvd
CVE-2019-1385
2019-11-12 19:15:12
packetstorm
packetstorm
Microsoft Windows AppXsvc Deployment Extension Privilege Escalation
2019-11-25 00:00:00
cve
cve
CVE-2019-1385
2019-11-12 19:15:12
cisa_kev
cisa_kev
symantec
symantec
exploitdb
exploitdb
Microsoft Windows AppXsvc Deployment Extension - Privilege Escalation
2019-11-25 00:00:00
attackerkb
attackerkb
CVE-2019-1385
2019-11-12 00:00:00
mscve
mscve
Windows AppX Deployment Extensions Elevation of Privilege Vulnerability
2019-11-12 08:00:00
prion
prion
Privilege escalation
2019-11-12 19:15:00
kitploit
kitploit
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4525237)
2019-11-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4523205)
2019-11-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4525241)
2019-11-13 00:00:00
nessus
nessus
KB4524570: Windows 10 Version 1903 and Windows 10 Version 1909 November 2019 Security Update
2019-11-12 00:00:00
KB4523205: Windows 10 Version 1809 and Windows Server 2019 November 2019 Security Update
2019-11-12 00:00:00
KB4525241: Windows 10 Version 1709 November 2019 Security Update
2019-11-12 00:00:00
mskb
mskb
November 12, 2019âKB4525241 (OS Build 16299.1508)
2019-11-12 08:00:00
November 12, 2019âKB4524570 (OS Builds 18362.476 and 18363.476) - EXPIRED
2019-11-12 08:00:00
November 12, 2019âKB4523205 (OS Build 17763.864)
2019-11-12 08:00:00
kaspersky
kaspersky
KLA11608 Multiple vulnerabilities in Microsoft Windows
2019-11-12 00:00:00
talosblog
talosblog