| |
Vulnerability CVE-2019-1161
Published: 2019-08-14
Description: |
An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'. |
Type:
CWE-264 (Permissions, Privileges, and Access Controls)
CVSS2 => (AV:L/AC:L/Au:N/C:N/I:C/A:C)
CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
6.6/10 |
9.2/10 |
3.9/10 |
Exploit range |
Attack complexity |
Authentication |
Local |
Low |
No required |
Confidentiality impact |
Integrity impact |
Availability impact |
None |
Complete |
Complete |
References: |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1161
|
|
|
closedb();
?>
Copyright 2024, cxsecurity.com
|
|
|