CVE-2019-0940

Summary

A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'.

Affected Software

VendorProductVersion RangeStatus
MicrosoftInternet Explorer 11Windows 7 for 32-bit Systems Service Pack 1affected
MicrosoftInternet Explorer 11Windows 7 for x64-based Systems Service Pack 1affected
MicrosoftInternet Explorer 11Windows Server 2008 R2 for x64-based Systems Service Pack 1affected
MicrosoftInternet Explorer 11Windows 8.1 for 32-bit systemsaffected
MicrosoftInternet Explorer 11Windows 8.1 for x64-based systemsaffected
MicrosoftInternet Explorer 11Windows Server 2012 R2affected
MicrosoftInternet Explorer 11Windows RT 8.1affected
MicrosoftInternet Explorer 11Windows 10 for 32-bit Systemsaffected
MicrosoftInternet Explorer 11Windows 10 for x64-based Systemsaffected
MicrosoftInternet Explorer 11Windows Server 2016affected
MicrosoftInternet Explorer 11Windows 10 Version 1607 for 32-bit Systemsaffected
MicrosoftInternet Explorer 11Windows 10 Version 1607 for x64-based Systemsaffected
MicrosoftInternet Explorer 11Windows 10 Version 1703 for 32-bit Systemsaffected
MicrosoftInternet Explorer 11Windows 10 Version 1703 for x64-based Systemsaffected
MicrosoftInternet Explorer 11Windows 10 Version 1709 for 32-bit Systemsaffected
MicrosoftInternet Explorer 11Windows 10 Version 1709 for x64-based Systemsaffected
MicrosoftInternet Explorer 11Windows 10 Version 1803 for 32-bit Systemsaffected
MicrosoftInternet Explorer 11Windows 10 Version 1803 for x64-based Systemsaffected
MicrosoftInternet Explorer 11Windows 10 Version 1803 for ARM64-based Systemsaffected
MicrosoftInternet Explorer 11Windows 10 Version 1809 for 32-bit Systemsaffected
MicrosoftInternet Explorer 11Windows 10 Version 1809 for x64-based Systemsaffected
MicrosoftInternet Explorer 11Windows 10 Version 1809 for ARM64-based Systemsaffected
MicrosoftInternet Explorer 11Windows Server 2019affected
MicrosoftInternet Explorer 11Windows 10 Version 1709 for ARM64-based Systemsaffected
MicrosoftInternet Explorer 11 on Windows Server 2012unspecifiedaffected
MicrosoftInternet Explorer 11 on Windows 10 Version 1903 for 32-bit Systemsunspecifiedaffected
MicrosoftInternet Explorer 11 on Windows 10 Version 1903 for x64-based Systemsunspecifiedaffected
MicrosoftInternet Explorer 11 on Windows 10 Version 1903 for ARM64-based Systemsunspecifiedaffected
MicrosoftInternet Explorer 10Windows Server 2012affected
MicrosoftMicrosoft EdgeWindows 10 for 32-bit Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 for x64-based Systemsaffected
MicrosoftMicrosoft EdgeWindows Server 2016affected
MicrosoftMicrosoft EdgeWindows 10 Version 1607 for 32-bit Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 Version 1607 for x64-based Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 Version 1703 for 32-bit Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 Version 1703 for x64-based Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 Version 1709 for 32-bit Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 Version 1709 for x64-based Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 Version 1803 for 32-bit Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 Version 1803 for x64-based Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 Version 1803 for ARM64-based Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 Version 1809 for 32-bit Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 Version 1809 for x64-based Systemsaffected
MicrosoftMicrosoft EdgeWindows 10 Version 1809 for ARM64-based Systemsaffected
MicrosoftMicrosoft EdgeWindows Server 2019affected
MicrosoftMicrosoft EdgeWindows 10 Version 1709 for ARM64-based Systemsaffected
MicrosoftMicrosoft Edge on Windows 10 Version 1903 for 32-bit Systemsunspecifiedaffected
MicrosoftMicrosoft Edge on Windows 10 Version 1903 for x64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge on Windows 10 Version 1903 for ARM64-based Systemsunspecifiedaffected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References