Lucene search
MicrosoftCVELIST:CVE-2019-1385HistoryNov 12, 2019 - 6:52 p.m.
CVE-2019-1385
2019-11-1218:52:54
microsoft
www.cve.org
An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application to elevate privileges.The security update addresses the vulnerability by correcting how AppX Deployment Extensions manages privileges., aka âWindows AppX Deployment Extensions Elevation of Privilege Vulnerabilityâ.
CNA Affected
[
{
"product": "Windows",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "10 Version 1709 for 32-bit Systems"
},
{
"status": "affected",
"version": "10 Version 1709 for x64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1803 for 32-bit Systems"
},
{
"status": "affected",
"version": "10 Version 1803 for x64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1803 for ARM64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1809 for 32-bit Systems"
},
{
"status": "affected",
"version": "10 Version 1809 for x64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1809 for ARM64-based Systems"
},
{
"status": "affected",
"version": "10 Version 1709 for ARM64-based Systems"
}
]
},
{
"product": "Windows Server",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "version 1803 (Core Installation)"
},
{
"status": "affected",
"version": "2019"
},
{
"status": "affected",
"version": "2019 (Core installation)"
}
]
},
{
"product": "Windows 10 Version 1903 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Windows 10 Version 1903 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Windows 10 Version 1903 for ARM64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Windows Server, version 1903 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
}
]Related
cve
cve
CVE-2019-1385
2019-11-12 19:15:12
zdt
zdt
zdi
zdi
nvd
nvd
CVE-2019-1385
2019-11-12 19:15:12
exploitpack
exploitpack
Microsoft Windows AppXsvc Deployment Extension - Privilege Escalation
2019-11-25 00:00:00
packetstorm
packetstorm
Microsoft Windows AppXsvc Deployment Extension Privilege Escalation
2019-11-25 00:00:00
cisa_kev
cisa_kev
prion
prion
Privilege escalation
2019-11-12 19:15:00
symantec
symantec
attackerkb
attackerkb
CVE-2019-1385
2019-11-12 00:00:00
exploitdb
exploitdb
Microsoft Windows AppXsvc Deployment Extension - Privilege Escalation
2019-11-25 00:00:00
mscve
mscve
Windows AppX Deployment Extensions Elevation of Privilege Vulnerability
2019-11-12 08:00:00
kitploit
kitploit
mskb
mskb
November 12, 2019âKB4525241 (OS Build 16299.1508)
2019-11-12 08:00:00
November 12, 2019âKB4523205 (OS Build 17763.864)
2019-11-12 08:00:00
November 12, 2019âKB4524570 (OS Builds 18362.476 and 18363.476) - EXPIRED
2019-11-12 08:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4525237)
2019-11-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4523205)
2019-11-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4525241)
2019-11-13 00:00:00
nessus
nessus
kaspersky
kaspersky
KLA11608 Multiple vulnerabilities in Microsoft Windows
2019-11-12 00:00:00
talosblog
talosblog