VDB
CVE-2019-0940
CVE-2019-0940
PUBLISHED
CVSS 7.5 HIGH
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'.
EPSS 52.99% · 98.0th percentile
Risk Scores
CVSS 3.0
7.5
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
52.99%
98.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Internet Explorer 11 | Windows Server 2019, Windows 7 for 32-bit Systems Service Pack 1, Windows 7 for x64-based Systems Service Pack 1 |
| Microsoft | Internet Explorer 11 on Windows Server 2012 | unspecified |
| Microsoft | Microsoft Edge on Windows 10 Version 1903 for ARM64-based Systems | unspecified |
| Microsoft | Microsoft Edge | *, *, * |
| Microsoft | Internet Explorer 11 on Windows 10 Version 1903 for x64-based Systems | unspecified |
| Microsoft | Internet Explorer 11 on Windows 10 Version 1903 for 32-bit Systems | unspecified |
| microsoft | internet_explorer | 10, 11 |
| microsoft | edge | |
| Microsoft | Internet Explorer 10 | Windows Server 2012 |
| Microsoft | Microsoft Edge on Windows 10 Version 1903 for x64-based Systems | unspecified |
| Microsoft | Internet Explorer 11 on Windows 10 Version 1903 for ARM64-based Systems | unspecified |
| Microsoft | Microsoft Edge on Windows 10 Version 1903 for 32-bit Systems | unspecified |
Exploit Intelligence
Timeline
- May 15, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Nov 10, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- May 13, 2023 EPSS Score