Vulnerability-Lookup

VDE-2019-011

Vulnerability from csaf_pepperlfuchsse - Published: 2019-05-29 07:35 - Updated: 2019-10-07 10:00

Summary

Pepperl+Fuchs: Remote code execution vulnerability in HMI devices

Notes

Summary: A remote code execution vulnerability exists in **Remote Desktop Services** – formerly known as **Terminal Services** – when an unauthenticated attacker connects to the target system using **RDP** and sends specially crafted requests. This vulnerability is **pre-authentication** and requires **no user interaction**. An attacker who successfully exploits this vulnerability could execute arbitrary code on the target system. To exploit this vulnerability, an attacker would need to send a specially crafted request to the target system's Remote Desktop Service via **RDP**. ### Microsoft Advisories - [CVE-2019-0708](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708) - [CVE-2019-1181](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1181) - [CVE-2019-1182](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1182)

Impact: - **VisuNet RM Shell 3 devices** based on a **Windows XP Embedded** system do not contain Remote Desktop Services. → Therefore, this vulnerability could not be used by an attacker. - **VisuNet RM Shell 4 devices** have Remote Desktop Services **disabled by default**. → The vulnerability could only be exploited if the device Administrator **enabled** Remote Desktop Services **after commissioning**. - **VisuNet PC devices** with **Windows XP, Windows 7, or Windows 10** → It should be verified whether Remote Desktop Services are **disabled**. - **Systems with enabled Network Level Authentication (NLA)** → Are only **partially affected**, as NLA requires authentication **before** the vulnerability can be triggered. → However, these systems are still **vulnerable to Remote Code Execution (RCE)** if the attacker has **valid credentials**.

Remediation: Customers using **Pepperl+Fuchs HMI devices** out of **VisuNet RM\***, **VisuNet PC\*** or **Box Thin Client BTC\*** product families should follow these guidelines: - **Devices running Windows XP, Windows 7 or Windows 10** → Should be updated using the Windows Update mechanism. - **Devices running RM Shell 4 with enabled Remote Desktop Services** → Should be updated with the newest **RM Image 4 Security Patches 01/2017 to 09/2019 (18-33400G)**: [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400) *Note: For RM Shell 4 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.* - **Devices running RM Shell 5 with enabled Remote Desktop Services** → Should be updated with **RM Image 5 Security Patches 09/2019 (18-33624E)**: [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624) *Note: For RM Shell 5 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.* For support, please contact your local Pepperl+Fuchs sales representative.

CVE-2019-1182

A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. An attacker who successfully exploited this vulnerability could execute arbitrary code on the target system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit this vulnerability, an attacker would need to send a specially crafted request to the target systems Remote Desktop Service via RDP. The update addresses the vulnerability by correcting how Remote Desktop Services handles connection requests.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-284 - Improper Access Control

Vendor Fix - **Devices running RM Shell 4 with enabled Remote Desktop Services** → Should be updated with the newest **RM Image 4 Security Patches 01/2017 to 09/2019 (18-33400G)**: [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400) *Note: For RM Shell 4 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.* For support, please contact your local Pepperl+Fuchs sales representative.

Vendor Fix - **Devices running RM Shell 5 with enabled Remote Desktop Services** → Should be updated with **RM Image 5 Security Patches 09/2019 (18-33624E)**: [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624) *Note: For RM Shell 5 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.* For support, please contact your local Pepperl+Fuchs sales representative.

CVE-2019-0708

A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

CVE-2019-1181

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-284 - Improper Access Control

References

URL

Category

	https://certvde.com/en/advisories/VDE-2019-011/	self
	https://pepperl-fuchs.csaf-tp.certvde.com/.well-k…	self
	https://www.pepperl-fuchs.com	external
	https://certvde.com/en/advisories/vendor/pepperl-fuchs/	external

Acknowledgments

CERT@VDE certvde.com

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "organization": "CERT@VDE",
        "summary": "coordination",
        "urls": [
          "https://certvde.com"
        ]
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-GB",
    "notes": [
      {
        "category": "summary",
        "text": "A remote code execution vulnerability exists in **Remote Desktop Services** \u2013 formerly known as **Terminal Services** \u2013 when an unauthenticated attacker connects to the target system using **RDP** and sends specially crafted requests.  \nThis vulnerability is **pre-authentication** and requires **no user interaction**.  \nAn attacker who successfully exploits this vulnerability could execute arbitrary code on the target system.\n\nTo exploit this vulnerability, an attacker would need to send a specially crafted request to the target system\u0027s Remote Desktop Service via **RDP**.\n\n### Microsoft Advisories\n\n- [CVE-2019-0708](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708)\n- [CVE-2019-1181](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1181)\n- [CVE-2019-1182](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1182)",
        "title": "Summary"
      },
      {
        "category": "description",
        "text": "- **VisuNet RM Shell 3 devices** based on a **Windows XP Embedded** system do not contain Remote Desktop Services.  \n  \u2192 Therefore, this vulnerability could not be used by an attacker.\n\n- **VisuNet RM Shell 4 devices** have Remote Desktop Services **disabled by default**.  \n  \u2192 The vulnerability could only be exploited if the device Administrator **enabled** Remote Desktop Services **after commissioning**.\n\n- **VisuNet PC devices** with **Windows XP, Windows 7, or Windows 10**  \n  \u2192 It should be verified whether Remote Desktop Services are **disabled**.\n\n- **Systems with enabled Network Level Authentication (NLA)**  \n  \u2192 Are only **partially affected**, as NLA requires authentication **before** the vulnerability can be triggered.  \n  \u2192 However, these systems are still **vulnerable to Remote Code Execution (RCE)** if the attacker has **valid credentials**.",
        "title": "Impact"
      },
      {
        "category": "description",
        "text": "Customers using **Pepperl+Fuchs HMI devices** out of **VisuNet RM\\***, **VisuNet PC\\*** or **Box Thin Client BTC\\*** product families should follow these guidelines:\n\n- **Devices running Windows XP, Windows 7 or Windows 10**  \n  \u2192 Should be updated using the Windows Update mechanism.\n\n- **Devices running RM Shell 4 with enabled Remote Desktop Services**  \n  \u2192 Should be updated with the newest **RM Image 4 Security Patches 01/2017 to 09/2019 (18-33400G)**:  \n  [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400)  \n  *Note: For RM Shell 4 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.*\n\n- **Devices running RM Shell 5 with enabled Remote Desktop Services**  \n  \u2192 Should be updated with **RM Image 5 Security Patches 09/2019 (18-33624E)**:  \n  [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624)  \n  *Note: For RM Shell 5 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.*\n\nFor support, please contact your local Pepperl+Fuchs sales representative.",
        "title": "Remediation"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "cert@pepperl-fuchs.com",
      "name": "Pepperl+Fuchs SE",
      "namespace": "https://www.pepperl-fuchs.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "VDE-2019-011: Pepperl+Fuchs: Remote code execution vulnerability in HMI devices - HTML",
        "url": "https://certvde.com/en/advisories/VDE-2019-011/"
      },
      {
        "category": "self",
        "summary": "VDE-2019-011: Pepperl+Fuchs: Remote code execution vulnerability in HMI devices - CSAF",
        "url": "https://pepperl-fuchs.csaf-tp.certvde.com/.well-known/csaf/white/2019/vde-2019-011.json"
      },
      {
        "category": "external",
        "summary": "Vendor PSIRT",
        "url": "https://www.pepperl-fuchs.com"
      },
      {
        "category": "external",
        "summary": "CERT@VDE Security Advisories for Pepperl+Fuchs SE",
        "url": "https://certvde.com/en/advisories/vendor/pepperl-fuchs/"
      }
    ],
    "title": "Pepperl+Fuchs: Remote code execution vulnerability in HMI devices",
    "tracking": {
      "aliases": [
        "VDE-2019-011"
      ],
      "current_release_date": "2019-10-07T10:00:00.000Z",
      "generator": {
        "date": "2025-06-30T08:12:23.200Z",
        "engine": {
          "name": "Secvisogram",
          "version": "2.5.29"
        }
      },
      "id": "VDE-2019-011",
      "initial_release_date": "2019-05-29T07:35:00.000Z",
      "revision_history": [
        {
          "date": "2019-05-29T07:35:00.000Z",
          "number": "1.0.0",
          "summary": "Initial revision."
        },
        {
          "date": "2019-10-07T10:00:00.000Z",
          "number": "1.1.0",
          "summary": "The summary section was updated to include references to the newly relevant vulnerabilities CVE-2019-1181 and CVE-2019-1182.\nA previously included statement claiming that \"VisuNet RM Shell 5 devices and VisuNet PC devices running Windows 10 are not affected by this vulnerability\" was removed from the Impact section, as this information could no longer be confirmed.\nAdditionally, information regarding RM Shell 5 devices was added to the Solution section to provide updated mitigation guidance."
        }
      ],
      "status": "final",
      "version": "1.1.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:all/*",
                    "product": {
                      "name": "Box Thin Client BTC* vers:all/*",
                      "product_id": "CSAFPID-11001"
                    }
                  }
                ],
                "category": "product_name",
                "name": "Box Thin Client BTC*"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:all/*",
                    "product": {
                      "name": "VisuNet PC* vers:all/*",
                      "product_id": "CSAFPID-11002"
                    }
                  }
                ],
                "category": "product_name",
                "name": "VisuNet PC*"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:all/*",
                    "product": {
                      "name": "VisuNet RM* vers:all/*",
                      "product_id": "CSAFPID-11003"
                    }
                  }
                ],
                "category": "product_name",
                "name": "VisuNet RM*"
              }
            ],
            "category": "product_family",
            "name": "Hardware"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "RM Shell 3",
                "product": {
                  "name": "RM Shell 3",
                  "product_id": "CSAFPID-52001"
                }
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "\u003c18-33400G",
                    "product": {
                      "name": "RM Shell 4 \u003c18-33400G",
                      "product_id": "CSAFPID-51002"
                    }
                  },
                  {
                    "category": "product_version",
                    "name": "18-33400G",
                    "product": {
                      "name": "RM Shell 4 18-33400G",
                      "product_id": "CSAFPID-52004"
                    }
                  },
                  {
                    "category": "product_name",
                    "name": "RDS disabled",
                    "product": {
                      "name": "RM Shell 4 RDS disabled",
                      "product_id": "CSAFPID-52002"
                    }
                  }
                ],
                "category": "product_name",
                "name": "RM Shell 4"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "\u003c18-33624E",
                    "product": {
                      "name": "RM Shell 5 \u003c18-33624E",
                      "product_id": "CSAFPID-51003"
                    }
                  },
                  {
                    "category": "product_version",
                    "name": "18-33624E",
                    "product": {
                      "name": "RM Shell 5 18-33624E",
                      "product_id": "CSAFPID-52005"
                    }
                  },
                  {
                    "category": "product_name",
                    "name": "RDS disabled",
                    "product": {
                      "name": "RM Shell 5 RDS disabled",
                      "product_id": "CSAFPID-52003"
                    }
                  }
                ],
                "category": "product_name",
                "name": "RM Shell 5"
              }
            ],
            "category": "product_family",
            "name": "Software"
          }
        ],
        "category": "vendor",
        "name": "Pepperl+Fuchs"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Windows XP",
                "product": {
                  "name": "Windows XP",
                  "product_id": "CSAFPID-90001"
                }
              },
              {
                "category": "product_name",
                "name": "Windows 7",
                "product": {
                  "name": "Windows 7",
                  "product_id": "CSAFPID-90002"
                }
              },
              {
                "category": "product_name",
                "name": "Windows 10",
                "product": {
                  "name": "Windows 10",
                  "product_id": "CSAFPID-90003"
                }
              },
              {
                "category": "product_name",
                "name": "Windows XP Embedded",
                "product": {
                  "name": "Windows XP Embedded",
                  "product_id": "CSAFPID-90004"
                }
              }
            ],
            "category": "product_family",
            "name": "OS"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ],
    "product_groups": [
      {
        "group_id": "CSAFGID-0001",
        "product_ids": [
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015"
        ],
        "summary": "Affected products Shell 4."
      },
      {
        "group_id": "CSAFGID-0002",
        "product_ids": [
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012"
        ],
        "summary": "Fixed products Shell 4."
      },
      {
        "group_id": "CSAFGID-0004",
        "product_ids": [
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018"
        ],
        "summary": "Affected products Shell 5."
      },
      {
        "group_id": "CSAFGID-0005",
        "product_ids": [
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015"
        ],
        "summary": "Fixed products Shell 5."
      },
      {
        "group_id": "CSAFGID-0003",
        "product_ids": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003"
        ],
        "summary": "Known not affected products."
      }
    ],
    "relationships": [
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows XP installed on Box Thin Client BTC* vers:all/*",
          "product_id": "CSAFPID-31001"
        },
        "product_reference": "CSAFPID-90001",
        "relates_to_product_reference": "CSAFPID-11001"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows 7 installed on Box Thin Client BTC* vers:all/*",
          "product_id": "CSAFPID-31002"
        },
        "product_reference": "CSAFPID-90002",
        "relates_to_product_reference": "CSAFPID-11001"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows 10 installed on Box Thin Client BTC* vers:all/*",
          "product_id": "CSAFPID-31003"
        },
        "product_reference": "CSAFPID-90003",
        "relates_to_product_reference": "CSAFPID-11001"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows XP Embedded installed on Box Thin Client BTC* vers:all/*",
          "product_id": "CSAFPID-31004"
        },
        "product_reference": "CSAFPID-90004",
        "relates_to_product_reference": "CSAFPID-11001"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows XP installed on VisuNet PC* vers:all/*",
          "product_id": "CSAFPID-31005"
        },
        "product_reference": "CSAFPID-90001",
        "relates_to_product_reference": "CSAFPID-11002"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows 7 installed on VisuNet PC* vers:all/*",
          "product_id": "CSAFPID-31006"
        },
        "product_reference": "CSAFPID-90002",
        "relates_to_product_reference": "CSAFPID-11002"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows 10 installed on VisuNet PC* vers:all/*",
          "product_id": "CSAFPID-31007"
        },
        "product_reference": "CSAFPID-90003",
        "relates_to_product_reference": "CSAFPID-11002"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows XP Embedded installed on VisuNet PC* vers:all/*",
          "product_id": "CSAFPID-31008"
        },
        "product_reference": "CSAFPID-90004",
        "relates_to_product_reference": "CSAFPID-11002"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows XP installed on VisuNet RM* vers:all/*",
          "product_id": "CSAFPID-31009"
        },
        "product_reference": "CSAFPID-90001",
        "relates_to_product_reference": "CSAFPID-11003"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows 7 installed on VisuNet RM* vers:all/*",
          "product_id": "CSAFPID-31010"
        },
        "product_reference": "CSAFPID-90002",
        "relates_to_product_reference": "CSAFPID-11003"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows 10 installed on VisuNet RM* vers:all/*",
          "product_id": "CSAFPID-31011"
        },
        "product_reference": "CSAFPID-90003",
        "relates_to_product_reference": "CSAFPID-11003"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Windows XP Embedded installed on VisuNet RM* vers:all/*",
          "product_id": "CSAFPID-31012"
        },
        "product_reference": "CSAFPID-90004",
        "relates_to_product_reference": "CSAFPID-11003"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 4 \u003c18-33400G installed with Windows 7 installed on Box Thin Client BTC* vers:all/*",
          "product_id": "CSAFPID-31013"
        },
        "product_reference": "CSAFPID-51002",
        "relates_to_product_reference": "CSAFPID-31002"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 4 \u003c18-33400G installed with Windows 7 installed on VisuNet PC* vers:all/*",
          "product_id": "CSAFPID-31014"
        },
        "product_reference": "CSAFPID-51002",
        "relates_to_product_reference": "CSAFPID-31006"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 4 \u003c18-33400G installed with Windows 7 installed on VisuNet RM* vers:all/*",
          "product_id": "CSAFPID-31015"
        },
        "product_reference": "CSAFPID-51002",
        "relates_to_product_reference": "CSAFPID-31010"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 5 \u003c18-33624E installed with Windows 10 installed on Box Thin Client BTC* vers:all/*",
          "product_id": "CSAFPID-31016"
        },
        "product_reference": "CSAFPID-51003",
        "relates_to_product_reference": "CSAFPID-31003"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 5 \u003c18-33624E installed with Windows 10 installed on VisuNet PC* vers:all/*",
          "product_id": "CSAFPID-31017"
        },
        "product_reference": "CSAFPID-51003",
        "relates_to_product_reference": "CSAFPID-31007"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 5 \u003c18-33624E installed with Windows 10 installed on VisuNet RM* vers:all/*",
          "product_id": "CSAFPID-31018"
        },
        "product_reference": "CSAFPID-51003",
        "relates_to_product_reference": "CSAFPID-31011"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 3 installed with Windows XP Embedded installed on Box Thin Client BTC* vers:all/*",
          "product_id": "CSAFPID-32001"
        },
        "product_reference": "CSAFPID-52001",
        "relates_to_product_reference": "CSAFPID-31004"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 3 installed with Windows XP Embedded installed on VisuNet PC* vers:all/*",
          "product_id": "CSAFPID-32002"
        },
        "product_reference": "CSAFPID-52001",
        "relates_to_product_reference": "CSAFPID-31008"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 3 installed with Windows XP Embedded installed on VisuNet RM* vers:all/*",
          "product_id": "CSAFPID-32003"
        },
        "product_reference": "CSAFPID-52001",
        "relates_to_product_reference": "CSAFPID-31012"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 4 RDS disabled installed with Windows 7 installed on Box Thin Client BTC* vers:all/*",
          "product_id": "CSAFPID-32004"
        },
        "product_reference": "CSAFPID-52002",
        "relates_to_product_reference": "CSAFPID-31002"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 4 RDS disabled installed with Windows 7 installed on VisuNet PC* vers:all/*",
          "product_id": "CSAFPID-32005"
        },
        "product_reference": "CSAFPID-52002",
        "relates_to_product_reference": "CSAFPID-31006"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 4 RDS disabled installed with Windows 7 installed on VisuNet RM* vers:all/*",
          "product_id": "CSAFPID-32006"
        },
        "product_reference": "CSAFPID-52002",
        "relates_to_product_reference": "CSAFPID-31010"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 5 RDS disabled installed with Windows 10 installed on Box Thin Client BTC* vers:all/*",
          "product_id": "CSAFPID-32007"
        },
        "product_reference": "CSAFPID-52003",
        "relates_to_product_reference": "CSAFPID-31003"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 5 RDS disabled installed with Windows 10 installed on VisuNet PC* vers:all/*",
          "product_id": "CSAFPID-32008"
        },
        "product_reference": "CSAFPID-52003",
        "relates_to_product_reference": "CSAFPID-31007"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 5 RDS disabled installed with Windows 10 installed on VisuNet RM* vers:all/*",
          "product_id": "CSAFPID-32009"
        },
        "product_reference": "CSAFPID-52003",
        "relates_to_product_reference": "CSAFPID-31011"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 4 18-33400G installed with Windows 7 installed on Box Thin Client BTC* vers:all/*",
          "product_id": "CSAFPID-32010"
        },
        "product_reference": "CSAFPID-52004",
        "relates_to_product_reference": "CSAFPID-31002"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 4 18-33400G installed with Windows 7 installed on VisuNet PC* vers:all/*",
          "product_id": "CSAFPID-32011"
        },
        "product_reference": "CSAFPID-52004",
        "relates_to_product_reference": "CSAFPID-31006"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 4 18-33400G installed with Windows 7 installed on VisuNet RM* vers:all/*",
          "product_id": "CSAFPID-32012"
        },
        "product_reference": "CSAFPID-52004",
        "relates_to_product_reference": "CSAFPID-31010"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 5 18-33624E installed with Windows 10 installed on Box Thin Client BTC* vers:all/*",
          "product_id": "CSAFPID-32013"
        },
        "product_reference": "CSAFPID-52005",
        "relates_to_product_reference": "CSAFPID-31003"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 5 18-33624E installed with Windows 10 installed on VisuNet PC* vers:all/*",
          "product_id": "CSAFPID-32014"
        },
        "product_reference": "CSAFPID-52005",
        "relates_to_product_reference": "CSAFPID-31007"
      },
      {
        "category": "installed_with",
        "full_product_name": {
          "name": "RM Shell 5 18-33624E installed with Windows 10 installed on VisuNet RM* vers:all/*",
          "product_id": "CSAFPID-32015"
        },
        "product_reference": "CSAFPID-52005",
        "relates_to_product_reference": "CSAFPID-31011"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-1182",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "description",
          "text": "A remote code execution vulnerability exists in Remote Desktop Services \u2013 formerly known as Terminal Services \u2013 when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. An attacker who successfully exploited this vulnerability could execute arbitrary code on the target system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\nTo exploit this vulnerability, an attacker would need to send a specially crafted request to the target systems Remote Desktop Service via RDP.\nThe update addresses the vulnerability by correcting how Remote Desktop Services handles connection requests.\n",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015"
        ],
        "known_affected": [
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018"
        ],
        "known_not_affected": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003"
        ]
      },
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "- **Devices running RM Shell 4 with enabled Remote Desktop Services**  \n  \u2192 Should be updated with the newest **RM Image 4 Security Patches 01/2017 to 09/2019 (18-33400G)**:  \n  [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400)  \n  *Note: For RM Shell 4 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.*\n\nFor support, please contact your local Pepperl+Fuchs sales representative.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "- **Devices running RM Shell 5 with enabled Remote Desktop Services**  \n  \u2192 Should be updated with **RM Image 5 Security Patches 09/2019 (18-33624E)**:  \n  [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624)  \n  *Note: For RM Shell 5 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.*\n\nFor support, please contact your local Pepperl+Fuchs sales representative.",
          "group_ids": [
            "CSAFGID-0004"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 9.8,
            "environmentalSeverity": "CRITICAL",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 9.8,
            "temporalSeverity": "CRITICAL",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018"
          ]
        }
      ],
      "title": "CVE-2019-1182"
    },
    {
      "cve": "CVE-2019-0708",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka \u0027Remote Desktop Services Remote Code Execution Vulnerability\u0027.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015"
        ],
        "known_affected": [
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018"
        ],
        "known_not_affected": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003"
        ]
      },
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "- **Devices running RM Shell 4 with enabled Remote Desktop Services**  \n  \u2192 Should be updated with the newest **RM Image 4 Security Patches 01/2017 to 09/2019 (18-33400G)**:  \n  [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400)  \n  *Note: For RM Shell 4 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.*\n\nFor support, please contact your local Pepperl+Fuchs sales representative.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "- **Devices running RM Shell 5 with enabled Remote Desktop Services**  \n  \u2192 Should be updated with **RM Image 5 Security Patches 09/2019 (18-33624E)**:  \n  [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624)  \n  *Note: For RM Shell 5 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.*\n\nFor support, please contact your local Pepperl+Fuchs sales representative.",
          "group_ids": [
            "CSAFGID-0004"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 9.8,
            "environmentalSeverity": "CRITICAL",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 9.8,
            "temporalSeverity": "CRITICAL",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018"
          ]
        }
      ],
      "title": "CVE-2019-0708"
    },
    {
      "cve": "CVE-2019-1181",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "description",
          "text": "A remote code execution vulnerability exists in Remote Desktop Services \u2013 formerly known as Terminal Services \u2013 when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. An attacker who successfully exploited this vulnerability could execute arbitrary code on the target system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\nTo exploit this vulnerability, an attacker would need to send a specially crafted request to the target systems Remote Desktop Service via RDP.\nThe update addresses the vulnerability by correcting how Remote Desktop Services handles connection requests.\n",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015"
        ],
        "known_affected": [
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018"
        ],
        "known_not_affected": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003"
        ]
      },
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "- **Devices running RM Shell 4 with enabled Remote Desktop Services**  \n  \u2192 Should be updated with the newest **RM Image 4 Security Patches 01/2017 to 09/2019 (18-33400G)**:  \n  [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33400)  \n  *Note: For RM Shell 4 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.*\n\nFor support, please contact your local Pepperl+Fuchs sales representative.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "- **Devices running RM Shell 5 with enabled Remote Desktop Services**  \n  \u2192 Should be updated with **RM Image 5 Security Patches 09/2019 (18-33624E)**:  \n  [https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624](https://www.pepperl-fuchs.com/cgi-bin/db/doci.pl/?ShowDocByDocNo=18-33624)  \n  *Note: For RM Shell 5 devices with disabled Remote Desktop Services (default commissioning state), this update is optional but recommended.*\n\nFor support, please contact your local Pepperl+Fuchs sales representative.",
          "group_ids": [
            "CSAFGID-0004"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 9.8,
            "environmentalSeverity": "CRITICAL",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 9.8,
            "temporalSeverity": "CRITICAL",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018"
          ]
        }
      ],
      "title": "CVE-2019-1181"
    }
  ]
}

CVE-2019-1181 (GCVE-0-2019-1181)

Vulnerability from cvelistv5 – Published: 2019-08-14 20:55 – Updated: 2024-08-04 18:13

Title

Remote Desktop Services Remote Code Execution Vulnerability

Summary

Severity ?

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

CWE

Remote Code Execution

Assigner

microsoft

References

URL

Tags

	https://portal.msrc.microsoft.com/en-US/security-…	x_refsource_MISC
	http://www.huawei.com/en/psirt/security-advisorie…	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

Microsoft

Windows 10 Version 1703

Affected: 10.0.0 , < publication (custom)
cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*

Microsoft	Windows 10 Version 1803	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1809:::::::x64:* cpe:2.3:o:microsoft:windows_10_1803:::::::x64:* cpe:2.3:o:microsoft:windows_10_1803:::::::arm64:*
Microsoft	Windows Server, version 1803 (Server Core Installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_1803::::::::
Microsoft	Windows 10 Version 1809	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1809:::::::x86:* cpe:2.3:o:microsoft:windows_10_1809:::::::x64:* cpe:2.3:o:microsoft:windows_10_1809:::::::arm64:*
Microsoft	Windows Server 2019	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2019::::::::
Microsoft	Windows Server 2019 (Server Core installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2019::::::::
Microsoft	Windows 10 Version 1709 for 32-bit Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1709:::::::*
Microsoft	Windows 10 Version 1709	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1709:::::::*
Microsoft	Windows 10 Version 1903 for 32-bit Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1903:::::::*
Microsoft	Windows 10 Version 1903 for x64-based Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1903:::::::*
Microsoft	Windows 10 Version 1903 for ARM64-based Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1903:::::::*
Microsoft	Windows Server, version 1903 (Server Core installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_1903::::::::
Microsoft	Windows 10 Version 1507	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1507:::::::x86:* cpe:2.3:o:microsoft:windows_10_1507:::::::x64:*
Microsoft	Windows 10 Version 1607	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1607:::::::x86:* cpe:2.3:o:microsoft:windows_10_1607:::::::x64:*
Microsoft	Windows Server 2016	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2016::::::::
Microsoft	Windows Server 2016 (Server Core installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2016::::::::
Microsoft	Windows 8.1	Affected: 6.3.0 , < publication (custom) cpe:2.3:o:microsoft:windows_8.1:::::::x86:* cpe:2.3:o:microsoft:windows_8.1:::::::x64:* cpe:2.3:o:microsoft:windows_rt_8.1::::::::
Microsoft	Windows Server 2012	Affected: 6.2.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012:::::::x64:*
Microsoft	Windows Server 2012 (Server Core installation)	Affected: 6.2.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012:::::::x64:*
Microsoft	Windows Server 2012 R2	Affected: 6.3.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012_R2:::::::x64:*
Microsoft	Windows Server 2012 R2 (Server Core installation)	Affected: 6.3.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012_R2:::::::x64:*
Microsoft	Microsoft Remote Desktop for Android	Affected: 0 , < publication (custom) cpe:2.3:a:microsoft:remote_desktop:-:::::android::
Microsoft	Microsoft Remote Desktop for IoS	Affected: 1.0.0 , < publication (custom) cpe:2.3:a:microsoft:remote_desktop:-:::::ios::
Microsoft	Microsoft Remote Desktop for Mac	Affected: 1.0.0 , < publication (custom) cpe:2.3:a:microsoft:remote_desktop:-:::::mac::

Date Public ?

2019-08-13 07:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2019-1181",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-19T20:09:50.978315Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-19T20:10:00.970Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T18:13:29.299Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1181"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190819-01-windows-en"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-187667.pdf"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1703",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1803",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_1803:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server, version 1803  (Server Core Installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1809",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems"
          ],
          "product": "Windows 10 Version 1709 for 32-bit Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1709",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for 32-bit Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for x64-based Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for ARM64-based Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_1903:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server, version 1903 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1507",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1607",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 8.1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:a:microsoft:remote_desktop:-:*:*:*:*:android:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Microsoft Remote Desktop for Android",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:a:microsoft:remote_desktop:-:*:*:*:*:ios:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Microsoft Remote Desktop for IoS",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:a:microsoft:remote_desktop:-:*:*:*:*:mac:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Microsoft Remote Desktop for Mac",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2019-08-13T07:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "A remote code execution vulnerability exists in Remote Desktop Services \u2013 formerly known as Terminal Services \u2013 when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. An attacker who successfully exploited this vulnerability could execute arbitrary code on the target system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\nTo exploit this vulnerability, an attacker would need to send a specially crafted request to the target systems Remote Desktop Service via RDP.\nThe update addresses the vulnerability by correcting how Remote Desktop Services handles connection requests."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Remote Code Execution",
              "lang": "en-US",
              "type": "Impact"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-05-29T16:50:34.876Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1181"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190819-01-windows-en"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-187667.pdf"
        }
      ],
      "title": "Remote Desktop Services\u00a0Remote Code Execution Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2019-1181",
    "datePublished": "2019-08-14T20:55:04.000Z",
    "dateReserved": "2018-11-26T00:00:00.000Z",
    "dateUpdated": "2024-08-04T18:13:29.299Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-0708 (GCVE-0-2019-0708)

Vulnerability from cvelistv5 – Published: 2019-05-16 18:17 – Updated: 2025-10-21 23:45

Summary

Severity ?

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

Remote Code Execution

Assigner

microsoft

References

URL

Tags

	https://portal.msrc.microsoft.com/en-US/security-…	x_refsource_MISC
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
	http://www.huawei.com/en/psirt/security-advisorie…	x_refsource_CONFIRM
	http://www.huawei.com/en/psirt/security-notices/h…	x_refsource_CONFIRM
	http://packetstormsecurity.com/files/153133/Micro…	x_refsource_MISC
	http://packetstormsecurity.com/files/153627/Micro…	x_refsource_MISC
	http://packetstormsecurity.com/files/154579/BlueK…	x_refsource_MISC
	http://packetstormsecurity.com/files/155389/Micro…	x_refsource_MISC
	http://packetstormsecurity.com/files/162960/Micro…	x_refsource_MISC

Impacted products

Vendor

Product

Version

Microsoft

Windows

Affected: 7 for 32-bit Systems Service Pack 1
Affected: 7 for x64-based Systems Service Pack 1

Microsoft

Windows Server

Affected: 2008 R2 for x64-based Systems Service Pack 1 (Core installation)
Affected: 2008 R2 for Itanium-Based Systems Service Pack 1
Affected: 2008 R2 for x64-based Systems Service Pack 1
Affected: 2008 for 32-bit Systems Service Pack 2 (Core installation)
Affected: 2008 for Itanium-Based Systems Service Pack 2
Affected: 2008 for 32-bit Systems Service Pack 2
Affected: 2008 for x64-based Systems Service Pack 2
Affected: 2008 for x64-based Systems Service Pack 2 (Core installation)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T17:51:27.186Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-932041.pdf"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-616199.pdf"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-433987.pdf"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-832947.pdf"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-166360.pdf"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-406175.pdf"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190529-01-windows-en"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-notices/huawei-sn-20190515-01-windows-en"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/153627/Microsoft-Windows-RDP-BlueKeep-Denial-Of-Service.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/154579/BlueKeep-RDP-Remote-Windows-Kernel-Use-After-Free.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/155389/Microsoft-Windows-7-x86-BlueKeep-RDP-Use-After-Free.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/162960/Microsoft-RDP-Remote-Code-Execution.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 9.8,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2019-0708",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-02-07T16:17:22.676231Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2021-11-03",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-0708"
              },
              "type": "kev"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-21T23:45:37.137Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "government-resource"
            ],
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-0708"
          }
        ],
        "timeline": [
          {
            "lang": "en",
            "time": "2021-11-03T00:00:00.000Z",
            "value": "CVE-2019-0708 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Windows",
          "vendor": "Microsoft",
          "versions": [
            {
              "status": "affected",
              "version": "7 for 32-bit Systems Service Pack 1"
            },
            {
              "status": "affected",
              "version": "7 for x64-based Systems Service Pack 1"
            }
          ]
        },
        {
          "product": "Windows Server",
          "vendor": "Microsoft",
          "versions": [
            {
              "status": "affected",
              "version": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
            },
            {
              "status": "affected",
              "version": "2008 R2 for Itanium-Based Systems Service Pack 1"
            },
            {
              "status": "affected",
              "version": "2008 R2 for x64-based Systems Service Pack 1"
            },
            {
              "status": "affected",
              "version": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
            },
            {
              "status": "affected",
              "version": "2008 for Itanium-Based Systems Service Pack 2"
            },
            {
              "status": "affected",
              "version": "2008 for 32-bit Systems Service Pack 2"
            },
            {
              "status": "affected",
              "version": "2008 for x64-based Systems Service Pack 2"
            },
            {
              "status": "affected",
              "version": "2008 for x64-based Systems Service Pack 2 (Core installation)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka \u0027Remote Desktop Services Remote Code Execution Vulnerability\u0027."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Remote Code Execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-06-03T17:06:16.000Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-932041.pdf"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-616199.pdf"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-433987.pdf"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-832947.pdf"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-166360.pdf"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-406175.pdf"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190529-01-windows-en"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-notices/huawei-sn-20190515-01-windows-en"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/153627/Microsoft-Windows-RDP-BlueKeep-Denial-Of-Service.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/154579/BlueKeep-RDP-Remote-Windows-Kernel-Use-After-Free.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/155389/Microsoft-Windows-7-x86-BlueKeep-RDP-Use-After-Free.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/162960/Microsoft-RDP-Remote-Code-Execution.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@microsoft.com",
          "ID": "CVE-2019-0708",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "7 for 32-bit Systems Service Pack 1"
                          },
                          {
                            "version_value": "7 for x64-based Systems Service Pack 1"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Windows Server",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"
                          },
                          {
                            "version_value": "2008 R2 for Itanium-Based Systems Service Pack 1"
                          },
                          {
                            "version_value": "2008 R2 for x64-based Systems Service Pack 1"
                          },
                          {
                            "version_value": "2008 for 32-bit Systems Service Pack 2 (Core installation)"
                          },
                          {
                            "version_value": "2008 for Itanium-Based Systems Service Pack 2"
                          },
                          {
                            "version_value": "2008 for 32-bit Systems Service Pack 2"
                          },
                          {
                            "version_value": "2008 for x64-based Systems Service Pack 2"
                          },
                          {
                            "version_value": "2008 for x64-based Systems Service Pack 2 (Core installation)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Microsoft"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka \u0027Remote Desktop Services Remote Code Execution Vulnerability\u0027."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Remote Code Execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708",
              "refsource": "MISC",
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-932041.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-932041.pdf"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-616199.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-616199.pdf"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-433987.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-433987.pdf"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-832947.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-832947.pdf"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-166360.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-166360.pdf"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-406175.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-406175.pdf"
            },
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190529-01-windows-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190529-01-windows-en"
            },
            {
              "name": "http://www.huawei.com/en/psirt/security-notices/huawei-sn-20190515-01-windows-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-notices/huawei-sn-20190515-01-windows-en"
            },
            {
              "name": "http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/153627/Microsoft-Windows-RDP-BlueKeep-Denial-Of-Service.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/153627/Microsoft-Windows-RDP-BlueKeep-Denial-Of-Service.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/154579/BlueKeep-RDP-Remote-Windows-Kernel-Use-After-Free.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/154579/BlueKeep-RDP-Remote-Windows-Kernel-Use-After-Free.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/155389/Microsoft-Windows-7-x86-BlueKeep-RDP-Use-After-Free.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/155389/Microsoft-Windows-7-x86-BlueKeep-RDP-Use-After-Free.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/162960/Microsoft-RDP-Remote-Code-Execution.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/162960/Microsoft-RDP-Remote-Code-Execution.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2019-0708",
    "datePublished": "2019-05-16T18:17:00.000Z",
    "dateReserved": "2018-11-26T00:00:00.000Z",
    "dateUpdated": "2025-10-21T23:45:37.137Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-1182 (GCVE-0-2019-1182)

Vulnerability from cvelistv5 – Published: 2019-08-14 20:55 – Updated: 2024-08-04 18:13

Title

Remote Desktop Services Remote Code Execution Vulnerability

Summary

Severity ?

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

CWE

Remote Code Execution

Assigner

microsoft

References

URL

Tags

	https://portal.msrc.microsoft.com/en-US/security-…	x_refsource_MISC
	http://www.huawei.com/en/psirt/security-advisorie…	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

Microsoft

Windows 10 Version 1703

Affected: 10.0.0 , < publication (custom)
cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*

Microsoft	Windows 10 Version 1803	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1809:::::::x64:* cpe:2.3:o:microsoft:windows_10_1803:::::::x64:* cpe:2.3:o:microsoft:windows_10_1803:::::::arm64:*
Microsoft	Windows Server, version 1803 (Server Core Installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_1803::::::::
Microsoft	Windows 10 Version 1809	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1809:::::::x86:* cpe:2.3:o:microsoft:windows_10_1809:::::::x64:* cpe:2.3:o:microsoft:windows_10_1809:::::::arm64:*
Microsoft	Windows Server 2019	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2019::::::::
Microsoft	Windows Server 2019 (Server Core installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2019::::::::
Microsoft	Windows 10 Version 1709 for 32-bit Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1709:::::::*
Microsoft	Windows 10 Version 1709	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1709:::::::*
Microsoft	Windows 10 Version 1903 for 32-bit Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1903:::::::*
Microsoft	Windows 10 Version 1903 for x64-based Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1903:::::::*
Microsoft	Windows 10 Version 1903 for ARM64-based Systems	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10:1903:::::::*
Microsoft	Windows Server, version 1903 (Server Core installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_1903::::::::
Microsoft	Windows 10 Version 1507	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1507:::::::x86:* cpe:2.3:o:microsoft:windows_10_1507:::::::x64:*
Microsoft	Windows 10 Version 1607	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_10_1607:::::::x86:* cpe:2.3:o:microsoft:windows_10_1607:::::::x64:*
Microsoft	Windows Server 2016	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2016::::::::
Microsoft	Windows Server 2016 (Server Core installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2016::::::::
Microsoft	Windows 8.1	Affected: 6.3.0 , < publication (custom) cpe:2.3:o:microsoft:windows_8.1:::::::x86:* cpe:2.3:o:microsoft:windows_8.1:::::::x64:* cpe:2.3:o:microsoft:windows_rt_8.1::::::::
Microsoft	Windows Server 2012	Affected: 6.2.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012:::::::x64:*
Microsoft	Windows Server 2012 (Server Core installation)	Affected: 6.2.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012:::::::x64:*
Microsoft	Windows Server 2012 R2	Affected: 6.3.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012_R2:::::::x64:*
Microsoft	Windows Server 2012 R2 (Server Core installation)	Affected: 6.3.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_2012_R2:::::::x64:*
Microsoft	Microsoft Remote Desktop for Android	Affected: 0 , < publication (custom) cpe:2.3:a:microsoft:remote_desktop:-:::::android::
Microsoft	Microsoft Remote Desktop for IoS	Affected: 1.0.0 , < publication (custom) cpe:2.3:a:microsoft:remote_desktop:-:::::ios::
Microsoft	Microsoft Remote Desktop for Mac	Affected: 1.0.0 , < publication (custom) cpe:2.3:a:microsoft:remote_desktop:-:::::mac::

Date Public ?

2019-08-13 07:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2019-1182",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-18T20:42:39.694032Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-18T20:42:46.392Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T18:13:29.139Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1182"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190819-01-windows-en"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-187667.pdf"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1703",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1803",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_1803:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server, version 1803  (Server Core Installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1809",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems"
          ],
          "product": "Windows 10 Version 1709 for 32-bit Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1709",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for 32-bit Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for x64-based Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 10 Version 1903 for ARM64-based Systems",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_1903:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server, version 1903 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1507",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1607",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 8.1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:a:microsoft:remote_desktop:-:*:*:*:*:android:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Microsoft Remote Desktop for Android",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:a:microsoft:remote_desktop:-:*:*:*:*:ios:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Microsoft Remote Desktop for IoS",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:a:microsoft:remote_desktop:-:*:*:*:*:mac:*:*"
          ],
          "platforms": [
            "Unknown"
          ],
          "product": "Microsoft Remote Desktop for Mac",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "1.0.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2019-08-13T07:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "A remote code execution vulnerability exists in Remote Desktop Services \u2013 formerly known as Terminal Services \u2013 when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. An attacker who successfully exploited this vulnerability could execute arbitrary code on the target system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\nTo exploit this vulnerability, an attacker would need to send a specially crafted request to the target systems Remote Desktop Service via RDP.\nThe update addresses the vulnerability by correcting how Remote Desktop Services handles connection requests."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Remote Code Execution",
              "lang": "en-US",
              "type": "Impact"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-05-29T16:50:35.379Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1182"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190819-01-windows-en"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-187667.pdf"
        }
      ],
      "title": "Remote Desktop Services\u00a0Remote Code Execution Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2019-1182",
    "datePublished": "2019-08-14T20:55:04.000Z",
    "dateReserved": "2018-11-26T00:00:00.000Z",
    "dateUpdated": "2024-08-04T18:13:29.139Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

VDE-2019-011

CVE-2019-1181 (GCVE-0-2019-1181)

CVE-2019-0708 (GCVE-0-2019-0708)

CVE-2019-1182 (GCVE-0-2019-1182)

Tags

Sightings

Nomenclature