CVE-2019-1130

HIGH KEV RANSOMWARE

Windows AppX Deployment Service - Privilege Escalation

Title source: llm

Description

An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1129.

References (2)

[Patch, Vendor Advisory] https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1130

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1130

Scores

CVSS v3 7.8

EPSS 0.0194

EPSS Percentile 83.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-05-23

VulnCheck KEV 2022-03-24

InTheWild.io 2019-07-16

ENISA EUVD EUVD-2019-9707

Ransomware Use Confirmed

CWE

CWE-59

Status published

Products (15)

microsoft/windows_10_1507 (2 CPE variants)

microsoft/windows_10_1607 (2 CPE variants)

microsoft/windows_10_1703 (2 CPE variants)

microsoft/windows_10_1709 (3 CPE variants)

microsoft/windows_10_1803 (3 CPE variants)

microsoft/windows_10_1809 (3 CPE variants)

microsoft/windows_10_1903 (3 CPE variants)

microsoft/windows_8.1

microsoft/windows_rt_8.1

microsoft/windows_server_1803

... and 5 more

Published Jul 15, 2019

KEV Added May 23, 2022

Tracked Since Feb 18, 2026