CVE-2019-1342

HIGH

Windows Error Reporting - Privilege Escalation

Title source: llm

Description

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1315, CVE-2019-1339.

References (1)

[Patch, Vendor Advisory] https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1342

Scores

CVSS v3 7.8

EPSS 0.0057

EPSS Percentile 68.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-755

Status published

Affected Products (19)

microsoft/windows_10

microsoft/windows_7

microsoft/windows_8.1

microsoft/windows_rt_8.1

microsoft/windows_server_2008

microsoft/windows_server_2012

... and 4 more

Timeline

Published Oct 10, 2019

Tracked Since Feb 18, 2026