CVE-2019-0543: Microsoft Windows Privilege Escalation Vulnerability
First published: Tue Jan 08 2019(Updated: )
An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka "Microsoft Windows Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
Credit: secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Windows 10 | ||
| Windows 10 | =1607 | |
| Windows 10 | =1703 | |
| Windows 10 | =1709 | |
| Windows 10 | =1803 | |
| Windows 10 | =1809 | |
| Microsoft Windows 7 | =sp1 | |
| Microsoft Windows | ||
| Microsoft Windows RT | ||
| Microsoft Windows Server | =sp2 | |
| Microsoft Windows Server | =r2-sp1 | |
| Microsoft Windows Server | =r2-sp1 | |
| Microsoft Windows Server | ||
| Microsoft Windows Server | =r2 | |
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2016 | =1709 | |
| Microsoft Windows Server 2016 | =1803 | |
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Operating System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-0543?
CVE-2019-0543 has a severity rating of Important, indicating it poses a potential risk to affected systems.
How do I fix CVE-2019-0543?
To fix CVE-2019-0543, ensure that you apply the latest security updates released by Microsoft for affected Windows versions.
Which systems are affected by CVE-2019-0543?
CVE-2019-0543 affects various versions of Windows, including Windows 7, Windows 8.1, and several Windows Server editions.
What type of vulnerability is CVE-2019-0543?
CVE-2019-0543 is classified as an elevation of privilege vulnerability, allowing an attacker to gain elevated access to system resources.
Can CVE-2019-0543 be exploited remotely?
CVE-2019-0543 requires local access to the system, meaning it cannot be exploited remotely without first gaining physical access.
- agent/type
- agent/description
- agent/title
- agent/severity
- agent/remedy
- agent/weakness
- agent/first-publish-date
- agent/references
- agent/author
- agent/source
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/nvd-cve
- agent/softwarecombine
- agent/tags
- exploited/true
- ransomware/true
- collector/cisa-known-exploited
- source/CISA
- vendor/microsoft
- canonical/windows 10
- version/windows 10/1607
- version/windows 10/1703
- version/windows 10/1709
- version/windows 10/1803
- version/windows 10/1809
- canonical/microsoft windows 7
- version/microsoft windows 7/sp1
- canonical/microsoft windows
- canonical/microsoft windows rt
- canonical/microsoft windows server
- version/microsoft windows server/sp2
- version/microsoft windows server/r2-sp1
- version/microsoft windows server/r2
- canonical/microsoft windows server 2016
- version/microsoft windows server 2016/1709
- version/microsoft windows server 2016/1803
- canonical/microsoft windows server 2019
- canonical/microsoft windows operating system