Share:

CVE-2019-0948

Moderate 5.5

An information disclosure vulnerability exists in the Windows Event Viewer (eventvwr.msc) when it improperly parses XML input containing a reference to an external entity, aka 'Windows Event Viewer Information Disclosure Vulnerability'.

Published June 12, 2019.

Affected software

Microsoft Windows 7

Microsoft Windows Server 2008

Microsoft Windows Server 2019

Microsoft Windows 8.1

Microsoft Windows 10

Microsoft Windows Server 2016

Microsoft Windows Server 2012

Microsoft Windows Rt 8.1

Get alerts for Microsoft Windows 7

Reference links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0948