CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-1378

An elevation of privilege vulnerability exists in Windows 10 Update Assistant in the way it handles permissions.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows 10 Update Assistant Elevation of Privilege Vulnerability'.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.1%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1378
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1378

Products affected by CVE-2019-1378

Microsoft » Windows 10 Update Assistant » Version: N/A

cpe:2.3:a:microsoft:windows_10_update_assistant:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-1378

Products

Pricing

Contact Us