CVE-2019-0553

EUVD-2019-1323
An information disclosure vulnerability exists when Windows Subsystem for Linux improperly handles objects in memory, aka "Windows Subsystem for Linux Information Disclosure Vulnerability." This affects Windows 10 Servers, Windows 10, Windows Server 2019.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 53%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_server_2019
-
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
1703 (x64, x86)
KB4480973
1709 (arm64, x64, x86)
KB4480978
1803 (arm64, x64, x86)
KB4480966
1809 (arm64, x64, x86)
KB4480116
Windows Server
1709 Server Core
KB4480978
1803 Server Core
KB4480966
Windows Server 2019
Server Core
KB4480116
Standard
KB4480116
References
http://www.securityfocus.com/bid/106412
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0553
http://www.securityfocus.com/bid/106412
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0553