CVE-2019-0716 MEDIUM

CVE-2019-0716: Windows Denial of Service Vulnerability

Vendor Microsoft
Product Windows 10 Version 1703
Published August 14, 2019
Last update August 4, 2024

CVSS base score

5.8/10
Attack vector Network
Attack complexity High
Privileges required High
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H/E:P/RL:O/RC:C

What the vulnerability does

01Description

A denial of service vulnerability exists when Windows improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding. To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The vulnerability would not allow an attacker to execute code or to elevate user rights directly, but it could be used to cause a target system to stop responding. The update addresses the vulnerability by correcting how Windows handles objects in memory.

Key dates

02Disclosure timeline

August 14, 2019 CVE published
August 4, 2024 Record updated