CVE-2019-0571

HIGH

Windows Data Sharing Service - Privilege Escalation

Title source: llm

Description

An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly handles file operations, aka "Windows Data Sharing Service Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers. This CVE ID is unique from CVE-2019-0572, CVE-2019-0573, CVE-2019-0574.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Google Security Research · textlocalwindows

https://www.exploit-db.com/exploits/46159

View Code ZIP pw:eip

References (3)

[Patch, Vendor Advisory] https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0571

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/106426

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/46159/

Scores

CVSS v3 7.8

EPSS 0.0508

EPSS Percentile 89.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-706

Status published

Products (10)

microsoft/windows_10

microsoft/windows_10 1607

microsoft/windows_10 1703

microsoft/windows_10 1709

microsoft/windows_10 1803

microsoft/windows_10 1809

microsoft/windows_server_2016

microsoft/windows_server_2016 1709

microsoft/windows_server_2016 1803

microsoft/windows_server_2019

Published Jan 08, 2019

Tracked Since Feb 18, 2026