CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0998

An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges on the victim system. To exploit the vulnerability, an attacker would first have to gain execution on the victim system, then run a specially crafted application. The security update addresses the vulnerability by correcting how the Storage Services handles file operations.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.3%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

Products affected by CVE-2019-0998

Microsoft » Windows 10 » Version: 1709

cpe:2.3:o:microsoft:windows_10:1709
Microsoft » Windows 10 » Version: 1803

cpe:2.3:o:microsoft:windows_10:1803
Microsoft » Windows 10 » Version: 1809

cpe:2.3:o:microsoft:windows_10:1809
Microsoft » Windows 10 » Version: 1903

cpe:2.3:o:microsoft:windows_10:1903
Microsoft » Windows Server 2016 » Version: 1803

cpe:2.3:o:microsoft:windows_server_2016:1803
Microsoft » Windows Server 2016 » Version: 1903

cpe:2.3:o:microsoft:windows_server_2016:1903
Microsoft » Windows Server 2019 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2019:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0998

Products

Pricing

Contact Us