CVE-2019-0859

CVE Published 2019-04-09
Related Vendor(s) microsoft
Related Product(s) windows_8.1, windows_server_2008, windows_10, windows_server_2012, windows_server_2019, windows_server_2016, windows_7, windows_rt_8.1
Exploitation Reported (CISA KEV) 2021-11-03
CVSS 3 Base Score 7.8 (HIGH)
CVSS 3 Attack Complexity LOW
CVSS 3 Attack Vector LOCAL

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0685, CVE-2019-0803.

Cyber Threat Graph Context

Explore how this CVE relates to the wider threat graph

References