Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-1130

KEV · Ransomware EPSS 1.94% · P84
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-1130

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1129.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Windows 权限许可和访问控制问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Windows和Microsoft Windows Server都是美国微软(Microsoft)公司的产品。Microsoft Windows是一套个人设备使用的操作系统。Microsoft Windows Server是一套服务器操作系统。 Microsoft Windows中存在提权漏洞,该漏洞源于Windows AppX部署服务(AppXSVC)不正确地处理了硬链接。攻击者可通过登录到系统上并运行特制的应用程序利用该漏洞获取提升的权限。以下产品及版本受到影响:Microsoft
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
MicrosoftWindows Server 2012 -
MicrosoftWindows 8.1 for x64-based systems -
MicrosoftWindows 10 Version 1903 for 32-bit Systems unspecified -
MicrosoftWindows 10 Version 1903 for x64-based Systems unspecified -
MicrosoftWindows 10 Version 1903 for ARM64-based Systems unspecified -
MicrosoftWindows Server, version 1903 (Server Core installation) unspecified -

II. Public POCs for CVE-2019-1130

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2019-1130

登录查看更多情报信息。

Same Patch Batch · Microsoft · 2019-07-29 · 34 CVEs total

CVE-2019-1126Microsoft Active Directory Federation Services 安全特征问题漏洞
CVE-2019-1117Microsoft DirectWrite 缓冲区错误漏洞
CVE-2019-1118Microsoft DirectWrite 缓冲区错误漏洞
CVE-2019-1119Microsoft DirectWrite 缓冲区错误漏洞
CVE-2019-1120Microsoft DirectWrite 缓冲区错误漏洞
CVE-2019-1121Microsoft DirectWrite 缓冲区错误漏洞
CVE-2019-1122Microsoft DirectWrite 缓冲区错误漏洞
CVE-2019-1123Microsoft DirectWrite 缓冲区错误漏洞
CVE-2019-1124Microsoft DirectWrite 缓冲区错误漏洞
CVE-2019-1116Microsoft Windows Graphics Device Interface 信息泄露漏洞
CVE-2019-1127Microsoft DirectWrite 缓冲区错误漏洞
CVE-2019-1128Microsoft DirectWrite 缓冲区错误漏洞
CVE-2019-1129Microsoft Windows 权限许可和访问控制问题漏洞
CVE-2019-1132Microsoft win32k 权限许可和访问控制问题漏洞
CVE-2019-1134Microsoft SharePoint 跨站脚本漏洞
CVE-2019-1136Microsoft Exchange Server 权限许可和访问控制问题漏洞
CVE-2019-1137Microsoft Exchange Server 跨站脚本漏洞
CVE-2019-1098Microsoft Windows Graphics Device Interface 信息泄露漏洞
CVE-2019-1113Microsoft .NET Framework 输入验证错误漏洞
CVE-2019-1112Microsoft Excel 信息泄露漏洞

Showing top 20 of 34 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Windows Server
Same vendor: Microsoft

V. Comments for CVE-2019-1130

No comments yet

Leave a comment