Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMicrosoftCVELIST:CVE-2019-1478
HistoryDec 10, 2019 - 9:41 p.m.

CVE-2019-1478

2019-12-1021:41:04
microsoft
www.cve.org

8.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.5%

JSON

An elevation of privilege vulnerability exists when Windows improperly handles COM object creation, aka ‘Windows COM Server Elevation of Privilege Vulnerability’.

CNA Affected

[
  {
    "product": "Windows",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "7 for 32-bit Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "7 for x64-based Systems Service Pack 1"
      }
    ]
  },
  {
    "product": "Windows Server",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "2008 for 32-bit Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
      },
      {
        "status": "affected",
        "version": "2008 for Itanium-Based Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "2008 for x64-based Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
      },
      {
        "status": "affected",
        "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "2008 R2 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
      }
    ]
  }
]

Related

cve 1
prion 1
symantec 1
mscve 1
nvd 1
mskb 4
nessus 2
kaspersky 1
openvas 1
talosblog 1
cve
cve
CVE-2019-1478
2019-12-10 22:15:17
prion
prion
Privilege escalation
2019-12-10 22:15:00
symantec
symantec
Microsoft Windows COM Server CVE-2019-1478 Local Privilege Escalation Vulnerability
2019-12-10 00:00:00
mscve
mscve
Windows COM Server Elevation of Privilege Vulnerability
2019-12-10 08:00:00
nvd
nvd
CVE-2019-1478
2019-12-10 22:15:17
mskb
mskb
December 10, 2019—KB4530719 (Security-only update)
2019-12-10 08:00:00
December 10, 2019—KB4530695 (Monthly Rollup)
2019-12-10 08:00:00
December 10, 2019—KB4530692 (Security-only update)
2019-12-10 08:00:00
nessus
nessus
KB4530719: Windows Server 2008 December 2019 Security Update
2019-12-10 00:00:00
KB4530692: Windows 7 and Windows Server 2008 R2 December 2019 Security Update
2019-12-10 00:00:00
kaspersky
kaspersky
KLA11862 Multiple vulnerabilities in Microsoft Products (ESU)
2019-12-10 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4530734)
2019-12-11 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday — Dec. 2019: Vulnerability disclosures and Snort coverage
2019-12-10 10:41:37

8.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.5%

JSON
Related for CVELIST:CVE-2019-1478
cve1prion1symantec1mscve1nvd1mskb4nessus2kaspersky1openvas1talosblog1