Information Disclosure Vulnerability in Windows Operating System by Microsoft
CVE-2019-0554

5.5MEDIUM

Key Information:

Vendor: Microsoft
Status: Windows 7; Windows Server 2012 R2; Windows Rt 8.1; Windows Server 2008
Vendor: CVE Published:; 8 January 2019

What is CVE-2019-0554?

An information disclosure vulnerability arises when the Windows kernel incorrectly manages objects in memory. This flaw can potentially allow an attacker to gain access to sensitive information stored in the system's memory. Affected products include various versions of Windows, such as Windows 7, Windows 8.1, Windows 10, and multiple iterations of Windows Server. It's imperative for users and administrators to address this vulnerability to safeguard their systems against unauthorized information access.

Affected Version(s)

Windows 10 32-bit Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 Version 1607 for x64-based Systems

References

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/106411

vdb-entryx_refsource_BID

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 8, 2019
Vulnerability Reserved
Nov 26, 2018