CVE-2019-0710 - CERT CVE

  1. CVE-2019-0710

ID CVE-2019-0710
Sažetak A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application that causes a host machine to crash. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application. The security update addresses the vulnerability by resolving a number of conditions where Hyper-V would fail to prevent a guest operating system from sending malicious requests.
Reference
CVSS
Base: 5.5
Impact: 6.9
Exploitability:5.1
Pristup
VektorSloženostAutentikacija
ADJACENT_NETWORK LOW SINGLE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE COMPLETE
CVSS vektor AV:A/AC:L/Au:S/C:N/I:N/A:C
Zadnje važnije ažuriranje 20-05-2025 - 18:15
Objavljeno 12-06-2019 - 14:29