← Back

CVE-2019-1232

nvd nist
Published: Sep 11, 2019Modified: Nov 21, 2024

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly impersonates certain file operations, aka 'Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability'.

Affected (16)

Microsoft
6 products
Windows 10
Windows Server 2016
Windows Server 2019
Visual Studio
Visual Studio 2017
Visual Studio 2019
Configuration A
11 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Windows 10
All versions
Windows 10
Version 1607
Windows 10
Version 1703
Windows 10
Version 1709
Windows 10
Version 1803
Windows 10
Version 1809
Windows 10
Version 1903
Microsoft
Windows Server 2016
All versions
Windows Server 2016
Version 1803
Windows Server 2016
Version 1903
Windows Server 2019
All versions
Configuration B
5 vulnerable
Vulnerable SoftwareAffected Versions
Visual Studio
Version 2015 update3
Microsoft
Visual Studio 2017
Version 15.0
Visual Studio 2017
Version 15.9
Microsoft
Visual Studio 2019
Version 16.0
Visual Studio 2019
Version 16.2

References (2)

Source: secure@microsoft.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.