How severe is CVE-2019-1065?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.8 out of 10.

What type of vulnerability is CVE-2019-1065?

This is classified as CWE-367, which is a common weakness in software security.

CVE-2019-1065

HIGH Year: 2019

CVSS v3 Score

7.8

High

CVSS v2 Score

7.2

High

Weakness Type

CWE-367

View all →

Vulnerability Description

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application to take control of an affected system. The update addresses the vulnerability by correcting how the Windows kernel handles objects in memory.

CVE-2017-0331

HIGH

CVSS:7.8(High)

An elevation of privilege vulnerability in the NVIDIA video driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critica...

CWE-3672017

CVE-2017-0411

HIGH

CVSS:7.8(High)

An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as Hi...

CWE-3672017

CVE-2017-0412

HIGH

CVSS:7.8(High)

CWE-3672017

CVE-2017-0756

HIGH

CVSS:7.8(High)

A remote code execution vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34621073.

CWE-3672017

CVE-2017-15404

HIGH

CVSS:7.8(High)

An ability to process crash dumps under root privileges and inappropriate symlinks handling could lead to a local privilege escalation in Crash Reporting in Google Chrome on Chrome OS prior to 61.0.31...

CWE-3672017

CVE-2018-8584

HIGH

CVSS:7.8(High)

An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC Elevation of Privilege Vulnerability." This affects Wind...

CWE-3672018

CVE-2019-1065

Vulnerability Description

Related Vulnerabilities

CVE-2017-0331

CVE-2017-0411

CVE-2017-0412

CVE-2017-0756

CVE-2017-15404

CVE-2018-8584