CVE-2019-1430

EPSS 33.65%
Veröffentlicht 12.11.2019 19:15:14
Zuletzt bearbeitet 21.11.2024 04:36:41
Quelle secure@microsoft.com
CVE-Watchlists
Login
Unerledigt
Login

A remote code execution vulnerability exists when Windows Media Foundation improperly parses specially crafted QuickTime media files.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'Microsoft Windows Media Foundation Remote Code Execution Vulnerability'.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Windows 10 Version1903

Microsoft ≫ Windows Server 2016 Version1903

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	33.65%	0.968

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1430

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2019-1430

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2019-1430

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2019-1430

EUVD