VDB
CVE-2019-1429
CVE-2019-1429
PUBLISHED
KEV
CVSS 7.599999904632568 HIGH
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1426, CVE-2019-1427, CVE-2019-1428.
EPSS 83.04% · 99.3th percentile
Risk Scores
CVSS 2.0
7.599999904632568
EPSS Score
83.04%
99.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Internet Explorer 11 on Windows Server 2012 | unspecified |
| Microsoft | Internet Explorer 11 on Windows 10 Version 1903 for ARM64-based Systems | unspecified |
| Microsoft | Internet Explorer 11 on Windows 10 Version 1903 for x64-based Systems | * |
| Microsoft | Internet Explorer 11 on Windows 10 Version 1903 for 32-bit Systems | unspecified |
| Microsoft | Internet Explorer 10 | Windows Server 2012 |
| microsoft | internet_explorer | 11, 9, 10 |
| Microsoft | Internet Explorer 9 | *, Windows Server 2008 for 32-bit Systems Service Pack 2 |
| Microsoft | Internet Explorer 11 | Windows 7 for x64-based Systems Service Pack 1, Windows Server 2008 R2 for x64-based Systems Service Pack 1, Windows 8.1 for 32-bit systems |
Exploit Intelligence
- http://packetstormsecurity.com/files/155433/Microsoft-Internet-Explorer-Use-After-Free.html (nist-nvd)
- CIRCL seen: CVE-2019-1429 (circl-sighting)
- CIRCL seen: CVE-2019-1429 (circl-sighting)
- CIRCL seen: CVE-2019-1429 (circl-sighting)
- CIRCL seen: CVE-2019-1429 (circl-sighting)
- CIRCL seen: CVE-2019-1429 (circl-sighting)
- CIRCL exploited: CVE-2019-1429 (circl-sighting)
- CIRCL exploited: CVE-2019-1429 (circl-sighting)
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1429 (circl)
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1429 (circl)
…and 18 more exploits
Timeline
- Nov 12, 2019 PoC Published
- Nov 12, 2019 CVE Published
- Nov 13, 2019 PoC Published
- Nov 22, 2019 PoC Published
- Nov 22, 2019 PoC Published
- Apr 14, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Nov 3, 2021 CISA KEV Added
- Nov 8, 2021 PoC Published
- Nov 20, 2021 PoC Published
- Feb 4, 2022 EPSS Score
References
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1429 url
- http://packetstormsecurity.com/files/155433/Microsoft-Internet-Explorer-Use-After-Free.html url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1429 url
- https://portal.msrc.microsoft.com/fr-FR/security-guidance advisory
- https://nvd.nist.gov/vuln/detail/CVE-2019-1429 advisory