What is the severity of CVE-2019-1220?

CVE-2019-1220 has a moderate severity rating which indicates it can allow attackers to bypass certain security features.

How do I fix CVE-2019-1220?

To remediate CVE-2019-1220, users should update their Microsoft browsers to the latest version, as Microsoft has released security updates to address the vulnerability.

Which browsers are affected by CVE-2019-1220?

CVE-2019-1220 affects Microsoft Internet Explorer versions 9, 10, and 11.

Can CVE-2019-1220 affect my Windows Server?

No, CVE-2019-1220 does not affect Windows Server 2008, 2012, or later versions since they are not vulnerable.

Is Microsoft Edge impacted by CVE-2019-1220?

Microsoft Edge is not affected by CVE-2019-1220, as this vulnerability specifically impacts Internet Explorer.

Vulnerability/
CVE-2019-1220

medium

4.3

CWE

425

11/9/2019

4/8/2024

CVE-2019-1220

First published: Wed Sep 11 2019(Updated: )

A security feature bypass vulnerability exists when Microsoft Browsers fail to validate the correct Security Zone of requests for specific URLs, aka 'Microsoft Browser Security Feature Bypass Vulnerability'.

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Internet Explorer	=9
Microsoft Windows Server	=sp2
Internet Explorer	=10
Microsoft Windows Server
Internet Explorer	=11
Microsoft Windows 10
Microsoft Windows 10	=1607
Microsoft Windows 10	=1703
Microsoft Windows 10	=1709
Microsoft Windows 10	=1803
Microsoft Windows 10	=1809
Microsoft Windows 10	=1903
Microsoft Windows 7	=sp1
Microsoft Windows 8.1
Microsoft Windows RT
Microsoft Windows Server	=r2-sp1
Microsoft Windows Server	=r2
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft Edge Beta

Remedy

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1220

Never miss a vulnerability like this again

Reference Links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1220

Frequently Asked Questions

What is the severity of CVE-2019-1220?
CVE-2019-1220 has a moderate severity rating which indicates it can allow attackers to bypass certain security features.
How do I fix CVE-2019-1220?
To remediate CVE-2019-1220, users should update their Microsoft browsers to the latest version, as Microsoft has released security updates to address the vulnerability.
Which browsers are affected by CVE-2019-1220?
CVE-2019-1220 affects Microsoft Internet Explorer versions 9, 10, and 11.
Can CVE-2019-1220 affect my Windows Server?
No, CVE-2019-1220 does not affect Windows Server 2008, 2012, or later versions since they are not vulnerable.
Is Microsoft Edge impacted by CVE-2019-1220?
Microsoft Edge is not affected by CVE-2019-1220, as this vulnerability specifically impacts Internet Explorer.

agent/type
agent/references
agent/remedy
agent/weakness
agent/severity
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/microsoft
canonical/internet explorer
version/internet explorer/9
canonical/microsoft windows server
version/microsoft windows server/sp2
version/internet explorer/10
version/internet explorer/11
canonical/microsoft windows 10
version/microsoft windows 10/1607
version/microsoft windows 10/1703
version/microsoft windows 10/1709
version/microsoft windows 10/1803
version/microsoft windows 10/1809
version/microsoft windows 10/1903
canonical/microsoft windows 7
version/microsoft windows 7/sp1
canonical/microsoft windows 8.1
canonical/microsoft windows rt
version/microsoft windows server/r2-sp1
version/microsoft windows server/r2
canonical/microsoft windows server 2016
canonical/microsoft windows server 2019
canonical/microsoft edge beta