CVE-2019-0863 - Microsoft Windows Error Reporting (WER) Privilege Escalation Vulnerability
Project:Microsoft
Product:Windows
Date Added:2021-11-03Due Date:2022-05-03
Vulnerability Name
Microsoft Windows Error Reporting (WER) Privilege Escalation Vulnerability
Description
Microsoft Windows Error Reporting (WER) contains a privilege escalation vulnerability due to the way it handles files, allowing for code execution in kernel mode.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-0863