New Search

Unified Write Filter Elevation of Privilege Vulnerability - CVE-2019-0942

oval:org.cisecurity:def:6344

An elevation of privilege vulnerability exists in the Unified Write Filter (UWF) feature for Windows 10 when it improperly restricts access to the registry. An attacker who successfully exploited the vulnerability could make changes to the registry keys protected by UWF without having administrator privileges. To exploit the vulnerability an attacker would have to log on to an affected system utilizing UWF and access the registry editor. The security update addresses the vulnerability by correcting how the Unified Write Filter verifies privileges when accessing the registry.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2019
  • Microsoft Windows Server 2016
  • Microsoft Windows 10
Class:
vulnerability
Reference(s):
  • CVE-2019-0942
  • MSRC-CVE-2019-0942
  • KB4499154
  • KB4494440
  • KB4499181
  • KB4499179
  • KB4499167
  • KB4494441
Product(s):