Endpoint Vulnerability

Microsoft: Windows Hyper-V Information Disclosure Vulnerability

Description

An information disclosure vulnerability exists when Windows Hyper-V writes uninitialized memory to disk. An attacker could exploit the vulnerability by reading a file to recover kernel memory. To exploit the vulnerability, an attacker would first require access to a Hyper-V host. The security update addresses the vulnerability by ensuring Hyper-V properly initializes memory before writing it to disk.

Affected Products

Windows Server 2016,Windows 10,Windows Server, version 1803 (Server Core Installation),Windows Server, version 1903 (Server Core installation),Windows Server 2019

References

CVE-2019-1254,