An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1476.
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1483 | Patch Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-19-1005/ | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
Information
Published : 2019-12-10 14:15
Updated : 2020-08-24 10:37
NVD link : CVE-2019-1483
Mitre link : CVE-2019-1483
JSON object : View
CWE
CWE-59
Improper Link Resolution Before File Access ('Link Following')
Products Affected
microsoft
- windows_server_2016
- windows_server_2019
- windows_10