← volver
CVE-2019-1142

CVE-2019-1142

EPSS 1.0%
An elevation of privilege vulnerability exists when the .NET Framework common language runtime (CLR) allows file creation in arbitrary locations, aka '.NET Framework Elevation of Privilege Vulnerability'.
Productos afectados
Microsoft · Microsoft .NET Framework 3.5Microsoft · Microsoft .NET Framework 3.5 AND 4.7.2 on Windows 10 Version 1809 for 32-bit SystemsMicrosoft · Microsoft .NET Framework 3.5 AND 4.7.2 on Windows 10 Version 1809 for x64-based SystemsMicrosoft · Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2019Microsoft · Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2019 (Server Core installation)Microsoft · Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1809 for 32-bit SystemsMicrosoft · Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1809 for x64-based SystemsMicrosoft · Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1903 for 32-bit SystemsMicrosoft · Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1903 for x64-based SystemsMicrosoft · Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2019Microsoft · Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2019 (Server Core installation)Microsoft · Microsoft .NET Framework 3.5 AND 4.8 on Windows Server, version 1903 (Server Core installation)Microsoft · Microsoft .NET Framework 4.5.2Microsoft · Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2Microsoft · Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for 32-bit SystemsMicrosoft · Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for x64-based SystemsMicrosoft · Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for 32-bit SystemsMicrosoft · Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for x64-based SystemsMicrosoft · Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for 32-bit SystemsMicrosoft · Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for x64-based SystemsMicrosoft · Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for 32-bit SystemsMicrosoft · Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for x64-based SystemsMicrosoft · Microsoft .NET Framework 4.8 on Windows 8.1 for 32-bit systemsMicrosoft · Microsoft .NET Framework 4.8 on Windows 8.1 for x64-based systemsMicrosoft · Microsoft .NET Framework 4.8 on Windows RT 8.1Microsoft · Microsoft .NET Framework 4.8 on Windows Server 2012Microsoft · Microsoft .NET Framework 4.8 on Windows Server 2012 R2Microsoft · Microsoft .NET Framework 4.8 on Windows Server 2012 R2 (Server Core installation)Microsoft · Microsoft .NET Framework 4.8 on Windows Server 2012 (Server Core installation)Microsoft · Microsoft .NET Framework 4.8 on Windows Server 2016Microsoft · Microsoft .NET Framework 4.8 on Windows Server 2016 (Server Core installation)Microsoft · Microsoft .NET Framework 4.8 on Windows Server, version 1803 (Server Core Installation)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1142