CVE-2019-1291Microsoft Windows vulnerability

14 documents6 sources
Severity
8.8HIGHNVD
EPSS
30.3%
top 3.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
25
Microsoft WindowsMicrosoft Windows 10 Version 1903 FOR 32-bit SystemsMicrosoft Windows 10 Version 1903 FOR Arm64-based Systems+22 more
Timeline
PublishedSep 11
Latest updateMay 24

Description

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0787, CVE-2019-0788, CVE-2019-1290.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages23 packages

CVEListV5microsoft/windows_server17 versions+16

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

4
GHSA
GHSA-3mc8-g687-m3cf: A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Clie2022-05-24
GHSA
GHSA-57q3-7fwg-5h3g: A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Clie2022-05-24
GHSA
GHSA-jgwx-vv8h-22r9: A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Clie2022-05-24
GHSA
GHSA-r5xj-829m-j295: A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Clie2022-05-24

📋Vendor Advisories

1
Microsoft
Remote Desktop Client Remote Code Execution Vulnerability2019-09-10

🕵️Threat Intelligence

5
Trendmicro
September Patch Tuesday: RDP Vulns and Zero-Days2019-09-11
Trendmicro
September Patch Tuesday: RDP Vulns and Zero-Days2019-09-11
Tenable
Microsoft's September 2019 Patch Tuesday: Tenable Roundup2019-09-10
Qualys
September 2019 Patch Tuesday – 79 Vulns, 17 Critical, Remote Desktop Client, SharePoint, Exploited PrivEsc2019-09-10
Qualys
September 2019 Patch Tuesday - 79 Vulns, 17 Critical, Remote Desktop Client, SharePoint, Exploited PrivEsc | Qualys2019-09-10
CVE-2019-1291 — Microsoft Windows vulnerability | cvebase