CVE-2019-1378
First published: Thu Oct 10 2019(Updated: )
An elevation of privilege vulnerability exists in Windows 10 Update Assistant in the way it handles permissions.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows 10 Update Assistant Elevation of Privilege Vulnerability'.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows 10 Update Assistant |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2019-1378?
CVE-2019-1378 is an elevation of privilege vulnerability in Windows 10 Update Assistant.
How does CVE-2019-1378 affect Windows 10 Update Assistant?
CVE-2019-1378 allows a locally authenticated attacker to run arbitrary code with elevated system privileges.
What is the severity of CVE-2019-1378?
CVE-2019-1378 has a severity level of high.
How can I fix CVE-2019-1378?
To fix CVE-2019-1378, you should install the latest security update provided by Microsoft.
Where can I find more information about CVE-2019-1378?
More information about CVE-2019-1378 can be found at the following link: [https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1378](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1378)
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/event
- agent/weakness
- agent/type
- agent/description
- agent/remedy
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft windows 10 update assistant