CVE-2019-1338Inadequate Encryption Strength in Microsoft Windows

CWE-326Inadequate Encryption Strength12 documents7 sources
Severity
5.9MEDIUMNVD
EPSS
6.6%
top 8.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Microsoft WindowsMicrosoft Windows ServerMicrosoft Windows Server 2008
Timeline
PublishedOct 10
Latest updateMay 24

Description

A security feature bypass vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLMv2 protection if a client is also sending LMv2 responses, aka 'Windows NTLM Security Feature Bypass Vulnerability'.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 2.2 | Impact: 3.6

Affected Packages3 packages

CVEListV5microsoft/windows7 for 32-bit Systems Service Pack 1, 7 for x64-based Systems Service Pack 1+1
CVEListV5microsoft/windows_server8 versions+7

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-qm7q-vxj7-9xg3: A security feature bypass vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLMv2 protec2022-05-24
CVEList
CVE-2019-1338: A security feature bypass vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLMv2 protec2019-10-10

📋Vendor Advisories

1
Microsoft
Windows NTLM Security Feature Bypass Vulnerability2019-10-08

🕵️Threat Intelligence

8
Trendmicro
Short October Patch Tuesday: 9 Critical Fixes Featured2019-10-09
Trendmicro
Short October Patch Tuesday: 9 Critical Fixes Featured2019-10-09
Talos
Microsoft Patch Tuesday — Oct. 2019: Vulnerability disclosures and Snort coverage2019-10-08
Talos
Microsoft Patch Tuesday — Oct. 2019: Vulnerability disclosures and Snort coverage2019-10-08
Crowdstrike
Security Advisory: Active Directory Open to More NTLM Attacks
CVE-2019-1338 — Inadequate Encryption Strength | cvebase