VDB
CVE-2019-1069
CVE-2019-1069
PUBLISHED
KEV
CVSS 7.800000190734863 HIGH
An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates certain file operations. An attacker who successfully exploited the vulnerability could gain elevated privileges on a victim system. To exploit the vulnerability, an attacker would require unprivileged code execution on a victim system. The security update addresses the vulnerability by correctly validating file operations.
EPSS 32.50% · 97.0th percentile
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
EPSS Score
32.50%
97.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| microsoft | windows_server_1903 | 10.0.0 |
| microsoft | windows_10_1803 | |
| Microsoft | Windows 10 Version 1803 | 10.0.0 |
| microsoft | windows_server_1803 | 10.0.0 |
| microsoft | windows_server_2016 | 10.0.14393.0, 10.0.14393.0 |
| microsoft | windows_10_1809 | 10.0.17763.0, 10.0.0, 10.0.0 |
| Microsoft | Windows 10 Version 1507 | 10.0.10240.0 |
| Microsoft | Windows Server 2016 (Server Core installation) | 10.0.14393.0 |
| microsoft | windows_10 | 1709, 1607, 1607 |
| Microsoft | Windows 10 Version 1903 for ARM64-based Systems | 10.0.0 |
| microsoft | windows_10_1903 | |
| Microsoft | Windows 10 Version 1903 for 32-bit Systems | 10.0.0 |
| microsoft | windows_server_2019 | 10.0.17763.0, 10.0.17763.0 |
| Microsoft | Windows Server, version 1803 (Server Core Installation) | 10.0.0 |
| Microsoft | Windows Server 2016 | 10.0.14393.0 |
| microsoft | windows_10_1703 | |
| Microsoft | Windows 10 Version 1809 | 10.0.0, 10.0.17763.0 |
| microsoft | windows_10 | 10.0.0, 10.0.0, 10.0.0 |
| Microsoft | Windows 10 Version 1709 for 32-bit Systems | 10.0.0 |
| Microsoft | Windows Server 2019 | 10.0.17763.0 |
…and 11 more
Exploit Intelligence
- Privesc through import of Sheduled tasks + Hardlinks - CVE-2019-1069 (github-poc)
- Privesc through import of Sheduled tasks + Hardlinks - CVE-2019-1069 (github-poc)
- Privesc through import of Sheduled tasks + Hardlinks - CVE-2019-1069 (github-poc)
- Privesc through import of Sheduled tasks + Hardlinks - CVE-2019-1069 (github-poc)
- Privesc through import of Sheduled tasks + Hardlinks - CVE-2019-1069 (github-poc)
- Privesc through import of Sheduled tasks + Hardlinks - CVE-2019-1069 (github-poc)
- https://blog.0patch.com/2019/06/another-task-scheduler-0day-another.html (nist-nvd)
- CIRCL seen: CVE-2019-1069 (circl-sighting)
- CIRCL seen: CVE-2019-1069 (circl-sighting)
- CIRCL seen: CVE-2019-1069 (circl-sighting)
…and 49 more exploits
Timeline
- May 23, 2019 PoC Published
- Jun 12, 2019 CVE Published
- Oct 9, 2020 PoC Published
- Jan 10, 2021 PoC Published
- Apr 14, 2021 EPSS Score
- Apr 16, 2021 VulnCheck KEV Exploitation
- Jun 22, 2021 PoC Published
- Aug 24, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 28, 2022 EPSS Score
- Mar 15, 2022 CISA KEV Added
- Mar 24, 2022 VulnCheck KEV Exploitation
References
- https://portal.msrc.microsoft.com/fr-FR/security-guidance advisory
- Task Scheduler Elevation of Privilege Vulnerability vendor-advisory
- VU#119704 third-party-advisory
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1069 url
- https://blog.0patch.com/2019/06/another-task-scheduler-0day-another.html url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1069 url
- https://nvd.nist.gov/vuln/detail/CVE-2019-1069 advisory