cbcvebase.
CVE-2019-1358
published 2019-10-10

CVE-2019-1358: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code…

PriorityP353high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
76.45%
99.5th percentile
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1359.

Affected

66 ranges· showing 25
VendorProductVersion rangeFixed in
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows
microsoftwindows_10
microsoftwindows_10
microsoftwindows_10
microsoftwindows_10
microsoftwindows_10

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability is triggered when a victim opens a specially crafted file targeting the Windows Jet Database Engine; monitor for suspicious file opens involving JET/MDB file types from untrusted sources.
  • The vulnerable component is the Microsoft JET Database Engine (msjet*.dll); monitor for memory corruption or anomalous process behavior originating from JET database engine processing.
  • ·Exploit status at time of advisory: not publicly disclosed and not exploited in the wild; exploitation assessed as 'Less Likely' for both latest and older software releases.
  • ·Active Directory and Exchange Server are explicitly confirmed as NOT affected by this vulnerability.

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_msrc7.8HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.