CVE-2019-0708

{"id": "CVE-2019-0708", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2019-05-16T19:29:00.427", "references": [{"url": "http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.html", "tags": ["Third Party Advisory", "VDB Entry"], "source": "secure@microsoft.com"}, {"url": "http://packetstormsecurity.com/files/153627/Microsoft-Windows-RDP-BlueKeep-Denial-Of-Service.html", "source": "secure@microsoft.com"}, {"url": "http://packetstormsecurity.com/files/154579/BlueKeep-RDP-Remote-Windows-Kernel-Use-After-Free.html", "source": "secure@microsoft.com"}, {"url": "http://packetstormsecurity.com/files/155389/Microsoft-Windows-7-x86-BlueKeep-RDP-Use-After-Free.html", "source": "secure@microsoft.com"}, {"url": "http://packetstormsecurity.com/files/162960/Microsoft-RDP-Remote-Code-Execution.html", "source": "secure@microsoft.com"}, {"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190529-01-windows-en", "tags": ["Third Party Advisory"], "source": "secure@microsoft.com"}, {"url": "http://www.huawei.com/en/psirt/security-notices/huawei-sn-20190515-01-windows-en", "tags": ["Third Party Advisory"], "source": "secure@microsoft.com"}, {"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-166360.pdf", "tags": ["Third Party Advisory"], "source": "secure@microsoft.com"}, {"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-406175.pdf", "tags": ["Third Party Advisory"], "source": "secure@microsoft.com"}, {"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-433987.pdf", "tags": ["Third Party Advisory"], "source": "secure@microsoft.com"}, {"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-616199.pdf", "tags": ["Third Party Advisory"], "source": "secure@microsoft.com"}, {"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-832947.pdf", "tags": ["Third Party Advisory"], "source": "secure@microsoft.com"}, {"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-932041.pdf", "tags": ["Third Party Advisory"], "source": "secure@microsoft.com"}, {"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708", "tags": ["Patch", "Vendor Advisory"], "source": "secure@microsoft.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-416"}]}], "descriptions": [{"lang": "en", "value": "A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'."}, {"lang": "es", "value": "Existe una vulnerabilidad de ejecuci\u00f3n remota de c\u00f3digo en Remote Desktop Services, anteriormente conocido como Terminal Services, cuando un atacante no autenticado se conecta al sistema de destino mediante RDP y env\u00eda peticiones especialmente dise\u00f1adas, conocida como 'Remote Desktop Services Remote Code Execution Vulnerability'."}], "lastModified": "2021-06-03T18:15:07.837", "cisaActionDue": "2022-05-03", "cisaExploitAdd": "2021-11-03", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2B1C231-DE19-4B8F-A4AA-5B3A65276E46"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "A7371547-290D-4D0D-B98D-CA28B4D2E8B0"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "A76DF589-1D19-4B57-B37A-1E13B4411B0D"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2003:r2:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1668679-61E5-4011-92E7-CBD200F9454D"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F422A8C-2C4E-42C8-B420-E0728037E15C"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:itanium:*", "vulnerable": true, "matchCriteriaId": "B320A104-9037-487E-BC9A-62B4A6B49FD0"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F"}, {"criteria": "cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF1AD1A1-EE20-4BCE-9EE6-84B27139811C"}, {"criteria": "cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*", "vulnerable": true, "matchCriteriaId": "C6109348-BC79-4ED3-8D41-EA546A540C79"}, {"criteria": "cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "80169B1F-4EB6-4237-A940-AAB219C4FAAE"}], "operator": "OR"}]}], "sourceIdentifier": "secure@microsoft.com", "cisaRequiredAction": "Apply updates per vendor instructions.", "cisaVulnerabilityName": "Microsoft Remote Desktop Services Remote Code Execution Vulnerability"}