GSD-2019-0803 — Vulnetix

Try Vulnetix Request Demo

GSD-2019-0803 PUBLISHED CVSS 7.800000190734863 HIGH

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0685, CVE-2019-0859.

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Microsoft	Windows Server	2008 R2 for x64-based Systems Service Pack 1 (Core installation), 2008 R2 for Itanium-Based Systems Service Pack 1, 2008 R2 for x64-based Systems Service Pack 1
Microsoft	Windows	10 Version 1809 for ARM64-based Systems, 7 for 32-bit Systems Service Pack 1, 10 Version 1709 for ARM64-based Systems

Timeline

May 23, 2014 PoC Published
Apr 9, 2019 CVE Published
Apr 10, 2019 PoC Published
Jul 18, 2019 PoC Published
Jan 21, 2020 PoC Published
Jun 26, 2020 PoC Published
Aug 17, 2020 PoC Published
Sep 17, 2020 PoC Published
Oct 3, 2020 PoC Published
Oct 9, 2020 PoC Published
Oct 20, 2020 PoC Published
Oct 20, 2020 PoC Published

References

Open in Interactive Console →