VDB

CVE-2019-0630

CVE-2019-0630 PUBLISHED CVSS 8.800000190734863 HIGH

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0633.

EPSS 35.78% · 97.2th percentile

Risk Scores

CVSS 3.0
8.800000190734863
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
35.78%
97.2th percentile

Affected Products

VendorProductVersions
microsoftwindows_7
MicrosoftWindows7 for x64-based Systems Service Pack 1, 8.1 for 32-bit systems, 8.1 for x64-based systems
microsoftwindows_server_2019
microsoftwindows_101607, 1709, 1803
MicrosoftWindows Server2008 R2 for Itanium-Based Systems Service Pack 1, 2008 R2 for x64-based Systems Service Pack 1 (Core installation), 2008 R2 for x64-based Systems Service Pack 1
microsoftwindows_server_2008*, r2, r2
microsoftwindows_server_2012r2, *, r2
microsoftwindows_8.1
microsoftwindows_server_20161803, 1709, 1803
microsoftwindows_rt_8.1

Timeline

  • Feb 13, 2019 PoC Published
  • Mar 5, 2019 CVE Published
  • Apr 1, 2019 VulnCheck KEV Exploitation
  • Apr 14, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Jan 6, 2022 VulnCheck KEV Exploitation
  • Feb 4, 2022 EPSS Score
  • Feb 11, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›