CVE-2019-1282 — Vulnetix

CVE-2019-1282 PUBLISHED

An information disclosure vulnerability exists when the Windows Hyper-V Network Switch on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Information Disclosure Vulnerability'.

EPSS 0.57% · 69.0th percentile

Risk Scores

EPSS Score

0.57%

69.0th percentile

Affected Products

Vendor	Product	Versions
Microsoft	Windows	10 Version 1703 for x64-based Systems, 10 Version 1709 for x64-based Systems, 10 Version 1809 for x64-based Systems
Microsoft	Windows Server	version 1803 (Core Installation), *, 2019

Timeline

Sep 11, 2019 CVE Published
Jan 10, 2021 PoC Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Jun 22, 2021 PoC Published
Aug 24, 2021 EPSS Score
Oct 25, 2021 EPSS Score
Jan 6, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Feb 27, 2022 EPSS Score
May 1, 2022 EPSS Score
Jul 2, 2022 EPSS Score

References

https://portal.msrc.microsoft.com/fr-FR/security-guidance advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1230 url

Open in Interactive Console →