CVE-2019-1476

HIGH

Windows AppXSVC - Privilege Escalation

Title source: llm

Description

An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1483.

Exploits (2)

exploitdb WRITEUP

by Gabor Seljan · textdoswindows

https://www.exploit-db.com/exploits/47768

View Code ZIP pw:eip

nomisec WORKING POC 3 stars

by sgabe · poc

https://github.com/sgabe/CVE-2019-1476

View Code ZIP pw:eip

References (2)

[Patch, Vendor Advisory] https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1476

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/155653/AppXSvc-17763-Arbitrary-File-Overwrite.html

Scores

CVSS v3 7.8

EPSS 0.3561

EPSS Percentile 97.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (11)

microsoft/windows_10 1607

microsoft/windows_10 1709

microsoft/windows_10 1803

microsoft/windows_10 1809

microsoft/windows_10 1903

microsoft/windows_10 1909

microsoft/windows_server_2016

microsoft/windows_server_2016 1803

microsoft/windows_server_2016 1903

microsoft/windows_server_2016 1909

... and 1 more

Published Dec 10, 2019

Tracked Since Feb 18, 2026