CVE-2019-0877 — Microsoft Windows vulnerability
13 documents5 sources
Severity
7.8HIGHNVD
EPSS
1.9%
top 16.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedApr 9
Latest updateMay 13
Description
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0846, CVE-2019-0847, CVE-2019-0851, CVE-2019-0879.
CVSS vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9
Affected Packages20 packages
Patches
🔴Vulnerability Details
5GHSA▶
GHSA-jc5h-8j67-q8rr: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remot↗2022-05-13
GHSA▶
GHSA-vxrh-5cvm-mqcq: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remot↗2022-05-13
GHSA▶
GHSA-cr64-rc8p-fvv7: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remot↗2022-05-13
GHSA▶
GHSA-54w9-vjm8-6h33: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remot↗2022-05-13
GHSA▶
GHSA-7f4p-rrf6-2c35: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remot↗2022-05-13
📋Vendor Advisories
1🕵️Threat Intelligence
1Fortinet▶
Patch Your Microsoft Windows and Office: Fortinet Discovers Three Zero-Day Remote Code Execution Vulnerabilities↗2019-04-10
💬Community
1Bugzilla▶
CVE-2018-10912 keycloak: infinite loop in session replacement leading to denial of service↗2018-07-23