CVE-2019-0595Microsoft Windows vulnerability

13 documents3 sources
Severity
7.8HIGHNVD
EPSS
29.4%
top 3.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
22
Microsoft WindowsMicrosoft Windows ServerMicrosoft Windows 10+19 more
Timeline
PublishedMar 5
Latest updateMay 13

Description

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0596, CVE-2019-0597, CVE-2019-0598, CVE-2019-0599, CVE-2019-0625.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages20 packages

CVEListV5microsoft/windows20 versions+19

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

6
GHSA
GHSA-fgxc-xvh2-c6pj: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remot2022-05-13
GHSA
GHSA-cphp-7pfq-xhv8: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remot2022-05-13
GHSA
GHSA-655c-2hm3-7pv2: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remot2022-05-13
GHSA
GHSA-f6qh-vrc7-x7wg: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remot2022-05-13
GHSA
GHSA-xmfx-2q8w-vww5: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remot2022-05-13

📋Vendor Advisories

1
Microsoft
Jet Database Engine Remote Code Execution Vulnerability2019-02-12
CVE-2019-0595 — Microsoft Windows vulnerability | cvebase