Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA11533
HistoryAug 13, 2019 - 12:00 a.m.

KLA11533 Multiple vulnerabilities in Microsoft Browsers

2019-08-1300:00:00
Kaspersky Lab
threats.kaspersky.com
25

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.025 Low

EPSS

Percentile

89.9%

JSON

Detect date:

08/13/2019

Severity:

Critical

Description:

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, execute arbitrary code.

Exploitation:

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Affected products:

Internet Explorer 10
Internet Explorer 11
Microsoft Edge

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2019-1192
CVE-2019-1030
CVE-2019-1131
CVE-2019-1196
CVE-2019-1197
CVE-2019-1194
CVE-2019-1193
CVE-2019-1133
CVE-2019-1195
CVE-2019-1140
CVE-2019-1139
CVE-2019-1141

Impacts:

ACE

Related products:

Microsoft Internet Explorer

CVE-IDS:

CVE-2019-11924.3Warning
CVE-2019-10304.3Warning
CVE-2019-11317.6Critical
CVE-2019-11967.6Critical
CVE-2019-11977.6Critical
CVE-2019-11947.6Critical
CVE-2019-11937.6Critical
CVE-2019-11337.6Critical
CVE-2019-11957.6Critical
CVE-2019-11407.6Critical
CVE-2019-11397.6Critical
CVE-2019-11417.6Critical

KB list:

4512516
4511553
4512501
4512497
4512517
4512518
4512506
4512488
4512508
4512507
4511872
4520010
4520008
4520007
4519998
4520005
4517389
4519338
4520011
4520004
4519976
4519974

Microsoft official advisories:

References

Related

prion 12
cve 12
osv 7
github 7
nessus 12
mskb 23
symantec 12
mscve 13
veracode 6
checkpoint_advisories 7
openvas 20
talosblog 1
kaspersky 1
prion
prion
Remote code execution
2019-08-14 21:15:00
Remote code execution
2019-08-14 21:15:00
Remote code execution
2019-08-14 21:15:00
cve
cve
CVE-2019-1140
2019-08-14 21:15:00
CVE-2019-1197
2019-08-14 21:15:00
CVE-2019-1131
2019-08-14 21:15:00
osv
osv
Out-of-bounds write
2021-03-29 20:57:59
Out-of-bounds write
2021-03-29 20:57:53
Out-of-bounds write
2021-03-29 20:56:15
github
github
Out-of-bounds write
2021-03-29 20:57:56
Out-of-bounds write
2021-03-29 20:57:46
Out-of-bounds write
2021-03-29 20:56:15
nessus
nessus
Security Updates for Internet Explorer (August 2019)
2019-08-13 00:00:00
KB4512507: Windows 10 Version 1703 August 2019 Security Update
2019-08-13 00:00:00
KB4512516: Windows 10 Version 1709 August 2019 Security Update
2019-08-13 00:00:00
mskb
mskb
Cumulative security update for Internet Explorer: August 13, 2019
2019-08-13 07:00:00
August 13, 2019—KB4512516 (OS Build 16299.1331)
2019-08-13 07:00:00
August 13, 2019—KB4512508 (OS Build 18362.295)
2019-08-13 07:00:00
symantec
symantec
Microsoft Internet Explorer Scripting Engine CVE-2019-1193 Remote Memory Corruption Vulnerability
2019-08-13 00:00:00
Microsoft Edge Scripting Engine CVE-2019-1030 Information Disclosure Vulnerability
2019-08-13 00:00:00
Microsoft Edge Scripting Engine CVE-2019-1131 Remote Memory Corruption Vulnerability
2019-08-13 00:00:00
mscve
mscve
Microsoft Browser Memory Corruption Vulnerability
2019-08-13 07:00:00
Scripting Engine Memory Corruption Vulnerability
2019-08-13 07:00:00
Microsoft Edge based on Edge HTML Information Disclosure Vulnerability
2019-08-13 07:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-08-15 02:43:46
Remote Code Execution (RCE)
2019-08-15 02:27:29
Remote Code Execution (RCE)
2019-08-15 02:18:26
checkpoint_advisories
checkpoint_advisories
Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2019-1140)
2019-08-13 00:00:00
Microsoft Internet Explorer Memory Corruption(CVE-2019-1194)
2020-05-21 00:00:00
Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2019-1139)
2019-08-13 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2019-1598)
2020-01-23 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4512516)
2019-08-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4512507)
2019-08-14 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday — Aug. 2019: Vulnerability disclosures and Snort coverage
2019-08-14 09:55:35
kaspersky
kaspersky
KLA11989 Multiple vulnerabilities in Microsoft Products (ESU)
2019-08-13 00:00:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.025 Low

EPSS

Percentile

89.9%

JSON
Related for KLA11533
prion12cve12osv7github7nessus12mskb23symantec12mscve13veracode6checkpoint_advisories7openvas20talosblog1kaspersky1