What is the severity of CVE-2019-1152?

CVE-2019-1152 is rated as critical due to its potential for remote code execution.

How do I fix CVE-2019-1152?

To fix CVE-2019-1152, users should apply the latest security updates provided by Microsoft.

Which systems are affected by CVE-2019-1152?

CVE-2019-1152 affects multiple versions of Microsoft Windows, including Windows 7, Windows 8.1, and Windows 10.

What type of vulnerability is CVE-2019-1152?

CVE-2019-1152 is a remote code execution vulnerability related to the Windows font library.

Can CVE-2019-1152 be exploited without user interaction?

Yes, CVE-2019-1152 can be exploited by an attacker through specially crafted files, potentially without user interaction.

Vulnerability/
CVE-2019-1152

critical

9.3

CWE

787

14/8/2019

4/8/2024

CVE-2019-1152: Microsoft Graphics Remote Code Execution Vulnerability

First published: Wed Aug 14 2019(Updated: )

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Microsoft Graphics Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1144, CVE-2019-1145, CVE-2019-1149, CVE-2019-1150, CVE-2019-1151.

Credit: secure@microsoft.com secure@microsoft.com

Affected Software	Affected Version	How to fix
Windows 10
Windows 10	=1607
Windows 10	=1703
Windows 10	=1709
Windows 10	=1803
Windows 10	=1809
Windows 10	=1903
Microsoft Windows 7	=sp1
Microsoft Windows
Microsoft Windows RT
Microsoft Windows Server	=sp2
Microsoft Windows Server	=r2-sp1
Microsoft Windows Server
Microsoft Windows Server	=r2
Microsoft Windows Server 2016
Microsoft Windows Server 2016	=1803
Microsoft Windows Server 2016	=1903
Microsoft Windows Server 2019

Remedy

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1152

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2019-1152?
CVE-2019-1152 is rated as critical due to its potential for remote code execution.
How do I fix CVE-2019-1152?
To fix CVE-2019-1152, users should apply the latest security updates provided by Microsoft.
Which systems are affected by CVE-2019-1152?
CVE-2019-1152 affects multiple versions of Microsoft Windows, including Windows 7, Windows 8.1, and Windows 10.
What type of vulnerability is CVE-2019-1152?
CVE-2019-1152 is a remote code execution vulnerability related to the Windows font library.
Can CVE-2019-1152 be exploited without user interaction?
Yes, CVE-2019-1152 can be exploited by an attacker through specially crafted files, potentially without user interaction.

agent/references
agent/type
agent/remedy
agent/weakness
agent/title
agent/first-publish-date
agent/event
agent/severity
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
collector/nvd-index
agent/software-canonical-lookup-request
agent/tags
agent/softwarecombine
collector/nvd-api
source/NVD
agent/software-canonical-lookup
vendor/microsoft
canonical/windows 10
version/windows 10/1607
version/windows 10/1703
version/windows 10/1709
version/windows 10/1803
version/windows 10/1809
version/windows 10/1903
canonical/microsoft windows 7
version/microsoft windows 7/sp1
canonical/microsoft windows
canonical/microsoft windows rt
canonical/microsoft windows server
version/microsoft windows server/sp2
version/microsoft windows server/r2-sp1
version/microsoft windows server/r2
canonical/microsoft windows server 2016
version/microsoft windows server 2016/1803
version/microsoft windows server 2016/1903
canonical/microsoft windows server 2019