CVE-2019-1142

MEDIUM

.NET Framework - Privilege Escalation

Title source: llm
STIX 2.1

Description

An elevation of privilege vulnerability exists when the .NET Framework common language runtime (CLR) allows file creation in arbitrary locations, aka '.NET Framework Elevation of Privilege Vulnerability'.

References (1)

Core 1
Core References

Scores

CVSS v3 5.5
EPSS 0.0097
EPSS Percentile 57.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-22
Status published
Products (9)
microsoft/.net_framework 3.5
microsoft/.net_framework 4.7.2
microsoft/.net_framework 4.6
microsoft/.net_framework 4.6.1
microsoft/.net_framework 4.6.2
microsoft/.net_framework 4.7
microsoft/.net_framework 4.7.1
microsoft/.net_framework 4.8
microsoft/.net_framework 4.5.2
Published Sep 11, 2019
Tracked Since Feb 18, 2026