An elevation of privilege vulnerability exists when the .NET Framework common language runtime (CLR) allows file creation in arbitrary locations, aka '.NET Framework Elevation of Privilege Vulnerability'.
Attack Vector Local
Attack Complexity Low
Privileges Required Low
Scope Unchanged
Confidentiality Impact None
Integrity Impact High
Availability Impact None
User Interaction None
No CVSS v3.0
Access Vector Local
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact Partial
Availability Impact None
AV:L/AC:L/Au:N/C:N/I:P/A:N
Vendors | Products |
---|---|
Microsoft |
|
Configuration 1 [-]
AND |
|
Configuration 2 [-]
AND |
|
Configuration 3 [-]
AND |
|
Configuration 4 [-]
AND |
|
Configuration 5 [-]
AND |
|
Configuration 6 [-]
AND |
|
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1142 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: microsoft
Published: 2019-09-11T21:24:57
Updated: 2019-09-11T21:24:57
Reserved: 2018-11-26T00:00:00
Link: CVE-2019-1142
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-09-11T22:15:14.320
Modified: 2020-08-24T17:37:01.140
Link: CVE-2019-1142
JSON object: View
Redhat Information
No data.
CWE