VDB
CVE-2019-0841
CVE-2019-0841
PUBLISHED
KEV
CVSS 7.800000190734863 HIGH
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0685, CVE-2019-0859.
EPSS 82.65% · 99.3th percentile
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
82.65%
99.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows Server | 2008 R2 for x64-based Systems Service Pack 1 (Core installation), 2008 R2 for Itanium-Based Systems Service Pack 1, 2008 R2 for x64-based Systems Service Pack 1 |
| Microsoft | Windows | *, 7 for 32-bit Systems Service Pack 1, * |
Exploit Intelligence
- mappl3/CVE-2019-0841 (github-poc-repo)
- mappl3/CVE-2019-0841 (github-poc-repo)
- mappl3/CVE-2019-0841 (github-poc-repo)
- mappl3/CVE-2019-0841 (github-poc-repo)
- mappl3/CVE-2019-0841 (github-poc-repo)
- mappl3/CVE-2019-0841 (github-poc)
- mappl3/CVE-2019-0841 (github-poc)
- mappl3/CVE-2019-0841 (github-poc)
- mappl3/CVE-2019-0841 (github-poc)
- mappl3/CVE-2019-0841 (github-poc)
…and 109 more exploits
Timeline
- Jan 19, 1970 VulnCheck XDB Entry
- Jan 19, 1970 VulnCheck XDB Entry
- Jan 19, 1970 VulnCheck XDB Entry
- May 23, 2014 PoC Published
- Apr 9, 2019 PoC Published
- Apr 9, 2019 CVE Published
- Apr 10, 2019 PoC Published
- May 29, 2019 PoC Published
- Jun 7, 2019 PoC Published
- Jul 15, 2019 PoC Published
- Jul 18, 2019 PoC Published
- Sep 16, 2019 PoC Published
References
- https://portal.msrc.microsoft.com/fr-FR/security-guidance advisory
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0803 url
- http://packetstormsecurity.com/files/153034/Microsoft-Windows-Win32k-Privilege-Escalation.html url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-0803 url