Lucene search
MicrosoftCVE-2019-0921HistoryMay 16, 2019 - 7:29 p.m.
CVE-2019-0921
2019-05-1619:29:02
microsoft
web.nvd.nist.gov
68
url spoofing
internet explorer
cve-2019-0921
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
AI Score
6.5
Confidence
High
EPSS
0.002
Percentile
54.6%
An spoofing vulnerability exists when Internet Explorer improperly handles URLs, aka âInternet Explorer Spoofing Vulnerabilityâ.
Affected configurations
Node
microsoftwindows_server_2008Match-sp2
microsoftinternet_explorerMatch9
Node
microsoftwindows_server_2012Match-
microsoftinternet_explorerMatch10
Node
microsoftwindows_10Match-
ORmicrosoftwindows_10Match1607
ORmicrosoftwindows_10Match1703
ORmicrosoftwindows_10Match1709
ORmicrosoftwindows_10Match1803
ORmicrosoftwindows_10Match1809
ORmicrosoftwindows_10Match1903
ORmicrosoftwindows_7Match-sp1
ORmicrosoftwindows_8.1Match-
ORmicrosoftwindows_rt_8.1Match-
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2012Match-
ORmicrosoftwindows_server_2012Matchr2
ORmicrosoftwindows_server_2016Match-
ORmicrosoftwindows_server_2019Match-
microsoftinternet_explorerMatch11-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | internet_explorer_9 | Windows Server 2008 for 32-bit Systems Service Pack 2 | cpe:2.3:a:microsoft:internet_explorer_9:Windows Server 2008 for 32-bit Systems Service Pack 2:*:*:*:*:*:*:* |
| microsoft | internet_explorer_9 | Windows Server 2008 for x64-based Systems Service Pack 2 | cpe:2.3:a:microsoft:internet_explorer_9:Windows Server 2008 for x64-based Systems Service Pack 2:*:*:*:*:*:*:* |
| microsoft | internet_explorer_11 | Windows 7 for 32-bit Systems Service Pack 1 | cpe:2.3:a:microsoft:internet_explorer_11:Windows 7 for 32-bit Systems Service Pack 1:*:*:*:*:*:*:* |
| microsoft | internet_explorer_11 | Windows 7 for x64-based Systems Service Pack 1 | cpe:2.3:a:microsoft:internet_explorer_11:Windows 7 for x64-based Systems Service Pack 1:*:*:*:*:*:*:* |
| microsoft | internet_explorer_11 | Windows Server 2008 R2 for x64-based Systems Service Pack 1 | cpe:2.3:a:microsoft:internet_explorer_11:Windows Server 2008 R2 for x64-based Systems Service Pack 1:*:*:*:*:*:*:* |
| microsoft | internet_explorer_11 | Windows 8.1 for 32-bit systems | cpe:2.3:a:microsoft:internet_explorer_11:Windows 8.1 for 32-bit systems:*:*:*:*:*:*:* |
| microsoft | internet_explorer_11 | Windows 8.1 for x64-based systems | cpe:2.3:a:microsoft:internet_explorer_11:Windows 8.1 for x64-based systems:*:*:*:*:*:*:* |
| microsoft | internet_explorer_11 | Windows Server 2012 R2 | cpe:2.3:a:microsoft:internet_explorer_11:Windows Server 2012 R2:*:*:*:*:*:*:* |
| microsoft | internet_explorer_11 | Windows RT 8.1 | cpe:2.3:a:microsoft:internet_explorer_11:Windows RT 8.1:*:*:*:*:*:*:* |
| microsoft | internet_explorer_11 | Windows 10 for 32-bit Systems | cpe:2.3:a:microsoft:internet_explorer_11:Windows 10 for 32-bit Systems:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Internet Explorer 9",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"status": "affected",
"version": "Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
},
{
"product": "Internet Explorer 11",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows 7 for 32-bit Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows 7 for x64-based Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows 8.1 for 32-bit systems"
},
{
"status": "affected",
"version": "Windows 8.1 for x64-based systems"
},
{
"status": "affected",
"version": "Windows Server 2012 R2"
},
{
"status": "affected",
"version": "Windows RT 8.1"
},
{
"status": "affected",
"version": "Windows 10 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows Server 2016"
},
{
"status": "affected",
"version": "Windows 10 Version 1607 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1607 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1703 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1703 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1709 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1709 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1803 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1803 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1803 for ARM64-based Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1809 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1809 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1809 for ARM64-based Systems"
},
{
"status": "affected",
"version": "Windows Server 2019"
},
{
"status": "affected",
"version": "Windows 10 Version 1709 for ARM64-based Systems"
}
]
},
{
"product": "Internet Explorer 11 on Windows Server 2012",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Internet Explorer 11 on Windows 10 Version 1903 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Internet Explorer 11 on Windows 10 Version 1903 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Internet Explorer 11 on Windows 10 Version 1903 for ARM64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Internet Explorer 10",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows Server 2012"
}
]
}
]Related
mscve
mscve
Internet Explorer Spoofing Vulnerability
2019-05-14 07:00:00
nvd
nvd
CVE-2019-0921
2019-05-16 19:29:02
symantec
symantec
Microsoft Internet Explorer CVE-2019-0921 Spoofing Vulnerability
2019-05-14 00:00:00
cvelist
cvelist
CVE-2019-0921
2019-05-16 18:17:02
prion
prion
Spoofing
2019-05-16 19:29:00
mskb
mskb
Cumulative security update for Internet Explorer: May 14, 2019
2019-05-14 07:00:00
May 14, 2019âKB4499149 (Monthly Rollup)
2019-05-14 07:00:00
May 14, 2019âKB4499171 (Monthly Rollup)
2019-05-14 07:00:00
nessus
nessus
Security Updates for Internet Explorer (May 2019)
2019-05-14 00:00:00
kaspersky
kaspersky
KLA11478 Multiple vulnerabilities in Microsoft Browsers
2019-05-14 00:00:00
KLA11706 Multiple vulnerabilities in Microsoft Products (ESU)
2019-05-14 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4499149)
2019-05-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4499164)
2019-05-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4499151)
2019-05-15 00:00:00
talosblog
talosblog
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
AI Score
6.5
Confidence
High
EPSS
0.002
Percentile
54.6%
Related for CVE-2019-0921