New Search

Windows Hyper-V Information Disclosure Vulnerability - CVE-2019-1254

oval:org.cisecurity:def:6517

An information disclosure vulnerability exists when Windows Hyper-V writes uninitialized memory to disk. An attacker could exploit the vulnerability by reading a file to recover kernel memory. To exploit the vulnerability an attacker would first require access to a Hyper-V host. The security update addresses the vulnerability by ensuring Hyper-V properly initializes memory before writing it to disk.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2019
  • Microsoft Windows Server 2016
  • Microsoft Windows 10
Class:
vulnerability
Reference(s):
  • CVE-2019-1254
  • MSRC-CVE-2019-1254
  • KB4516044
  • KB4516068
  • KB4516066
  • KB4516058
  • KB4512578
  • KB4515384
Product(s):