| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE ID | CVE-2019-1405 |
| CWE ID | CWE-264 |
| Exploitation vector | Local |
| Public exploit | Public exploit code for vulnerability #1 is available. |
| Vulnerable software Subscribe |
Windows Operating systems & Components / Operating system Windows Server Operating systems & Components / Operating system |
| Vendor | Microsoft |
Updated: 21.11.2019
Added link to PoC, updated CVSS score.
Risk: Low
CVSSv3: 7.2 [CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C] [PCI]
CVE-ID: CVE-2019-1405
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: Yes [Search exploit]
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation. A local user can create a malicious application or script, launch it on the system and execute arbitrary code with SYSTEM privileges.
MitigationInstall updates from vendor's website.
Vulnerable software versionsWindows: 7, 8.1, 10, 10 1607, 10 1709, 10 1803, 10 1809, 10 1903, RT 8.1
Windows Server: 2008, 2008 R2, 2012, 2012 R2, 2016, 2019, 2019 1803, 2019 1903
CPEhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1405
https://www.exploit-db.com/exploits/47684
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, a fully functional exploit for this vulnerability is available.