CVE-2019-1226 — Microsoft Windows 10 Version 1903 FOR 32-bit Systems vulnerability

19 documents9 sources

Severity

9.8CRITICALNVD

EPSS

24.2%

top 3.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows 10 Version 1803 Microsoft Windows 10 Version 1809 Microsoft Windows 10 Version 1903 FOR 32-bit Systems +6 more

Timeline

PublishedAug 14

Latest updateMar 7

Description

A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. An attacker who successfully exploited this vulnerability could execute arbitrary code on the target system. An attacker could then install programs; view, change, or delete data; or create new accounts…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages9 packages

▶CVEListV5microsoft/windows_10_version_1903_for_32-bit_systems10.0.0 — publication

▶CVEListV5microsoft/windows_10_version_1903_for_x64-based_systems10.0.0 — publication

▶CVEListV5microsoft/windows_10_version_1903_for_arm64-based_systems10.0.0 — publication

▶CVEListV5microsoft/windows_server_201910.0.0 — publication

▶CVEListV5microsoft/windows_10_version_180310.0.0 — publication

Patches

Patch: portal.msrc.microsoft.com ↗Patch: portal.msrc.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-qcg4-w26w-fjv8: A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker conne↗2022-05-24

▶

GHSA

GHSA-vw3c-3fmq-qpgq: A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker conne↗2022-05-24

▶

GHSA

GHSA-w8p3-q4q6-xq79: A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker conne↗2022-05-24

▶

GHSA

GHSA-qvf2-39c6-g8rr: A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker conne↗2022-05-24

▶

CVEList

Remote Desktop Services Remote Code Execution Vulnerability↗2019-08-14

▶

📋Vendor Advisories

Chrome

Stable Channel Update for Desktop: CVE-2023-1225↗2023-03-07

▶

Microsoft

Remote Desktop Services Remote Code Execution Vulnerability↗2019-08-13

▶

🕵️Threat Intelligence

Tenable

Healthcare Security: Ransomware Plays a Prominent Role in COVID-19 Era Breaches↗2021-03-10

▶

Tenable

Microsoft’s January 2020 Patch Tuesday Kicks Off the New Year with 49 New CVEs↗2020-01-14

▶

Tenable

Objects in Mirror Are Closer Than They Appear: Reflecting on the Cybersecurity Threats from 2019↗2019-12-16

▶

Qualys

August 2019 Patch Tuesday – 93 Vulns, 29 Critical, 7 Remote Desktop Vulns, Hyper-V, DHCP, Adobe vulns↗2019-08-13

▶

Talos

Microsoft Patch Tuesday — Aug. 2019: Vulnerability disclosures and Snort coverage↗2019-08-13

▶

💬Community

Bugzilla

CVE-2019-20799 cherokee: multiple memory corruption errors may be used by a remote attacker to destabilize the work of a server↗2020-05-25

▶