CVE-2019-0543
HIGH KEV RANSOMWAREMicrosoft Windows 10 1507 - Authentication Bypass
Title source: ruleDescription
An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka "Microsoft Windows Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Google Security Research · textlocalwindows
https://www.exploit-db.com/exploits/46156
References (4)
Scores
CVSS v3
7.8
EPSS
0.2453
EPSS Percentile
96.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CISA KEV
2022-03-15
VulnCheck KEV
2022-03-15
InTheWild.io
2022-03-15
ENISA EUVD
EUVD-2019-1314
Ransomware Use
Confirmed
CWE
CWE-287
Status
published
Products (17)
microsoft/windows_10_1507
(2 CPE variants)
microsoft/windows_10_1607
(2 CPE variants)
microsoft/windows_10_1703
(2 CPE variants)
microsoft/windows_10_1709
microsoft/windows_10_1803
(3 CPE variants)
microsoft/windows_10_1809
(3 CPE variants)
microsoft/windows_7
microsoft/windows_8.1
microsoft/windows_rt_8.1
microsoft/windows_server_1709
... and 7 more
Published
Jan 08, 2019
KEV Added
Mar 15, 2022
Tracked Since
Feb 18, 2026