Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-g8mh-95ff-hf7w

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 8.4

Описание

A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Remote Code Execution Vulnerability'.

A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Remote Code Execution Vulnerability'.

Ссылки

EPSS

Процентиль: 74%
0.00858
Низкий

8.4 High

CVSS3

CVE ID

CVE-2019-0720

Дефекты

CWE-20

Связанные уязвимости

nvd логотип

CVE-2019-0720

CVSS3: 8
nvd
почти 6 лет назад

A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating system that could cause the Hyper-V host operating system to execute arbitrary code. An attacker who successfully exploited the vulnerability could execute arbitrary code on the host operating system. The security update addresses the vulnerability by correcting how Windows Hyper-V Network Switch validates guest operating system network traffic.

msrc логотип

CVE-2019-0720

CVSS3: 8
msrc
почти 6 лет назад

Hyper-V Remote Code Execution Vulnerability

fstec логотип

BDU:2019-02948

CVSS3: 8
fstec
почти 6 лет назад

Уязвимость системы аппаратной виртуализации Hyper-V операционной системы Windows, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 74%
0.00858
Низкий

8.4 High

CVSS3

CVE ID

CVE-2019-0720

Дефекты

CWE-20