⚠ Actively exploited

Added to CISA KEV on 2021-11-03. Federal agencies required to patch by 2022-05-03. Required action: Apply updates per vendor instructions..

CVE-2019-0803 — Microsoft Windows vulnerability

37 documents14 sources

Severity

7.8HIGHNVD

EPSS

89.8%

top 0.43%

CISA KEV

KEV

Added 2021-11-03

Due 2022-05-03

Exploit

Exploited in wild

Active exploitation observed

Affected products

Microsoft Windows Microsoft Windows Server Microsoft Windows 10 +19 more

Timeline

PublishedApr 9

KEV addedNov 3

KEV dueMay 3

Latest updateJun 28

CISA Required Action: Apply updates per vendor instructions.

Description

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0685, CVE-2019-0859.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages20 packages

▶msrcmsrc/windows_server_2019

▶msrcmsrc/windows_7

▶msrcmsrc/windows_10

▶msrcmsrc/windows_8.1

▶CVEListV5microsoft/windows20 versions+19

Patches

Patch: portal.msrc.microsoft.com ↗Patch: portal.msrc.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-vgp9-2hhf-fp9r: An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation↗2022-05-13

▶

GHSA

GHSA-6h99-5j8v-7r3p: An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation↗2022-05-13

▶

GHSA

GHSA-95q5-9858-rcxm: An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation↗2022-05-13

▶

Project0

Detection Deficit: A Year in Review of 0-days Used In-The-Wild in 2019 - Project Zero↗2020-07-01

▶

VulnCheck

Microsoft Win32k Privilege Escalation Vulnerability↗2019

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows - 'Win32k' Local Privilege Escalation↗2019-05-15

▶

📋Vendor Advisories

CISA

Microsoft Win32k Privilege Escalation Vulnerability↗2021-11-03

▶

Microsoft

Win32k Elevation of Privilege Vulnerability↗2019-04-09

▶

🕵️Threat Intelligence

Unit42

Manic Menagerie 2.0: The Evolution of a Highly Motivated Threat Actor↗2023-06-28

▶

Unit42

Manic Menagerie 2.0: The Evolution of a Highly Motivated Threat Actor↗2023-06-28

▶

Qualys

Managing CISA Known Exploited Vulnerabilities with Qualys VMDR | Qualys↗2022-02-23

▶

Trendmicro

Manage Zero Day Exploits (ZDI) with Trend Micro Solutions↗2021-04-28

▶

Trendmicro

Manage Zero Day Exploits (ZDI) with Trend Micro Solutions↗2021-04-28

▶