CVE-2019-0703

ENISA EUVD: EUVD-2019-1463 ↗
Exploited in the Wild ✓ Confirmed 0-Day ★ Google Project Zero
Triaged: March 5, 2026
VulnLookup ↗ NVD ↗ EUVD ↗ MITRE ↗ Advisory ↗ P0 Sheet ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-24
19.23%
probability
This CVE has a 19.23% probability of being exploited in the next 30 days.
0% Top 95.4th percentile of all CVEs 100%

CVSS v3.1

Source: NVD
6.5
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Description

Project Zero
Unspecified information leak vulnerability in SMB

Affected Products

Google Project Zero

Patched
March 12, 2019
Reported by
Piotr Krysiuk of Symantec & Andrew Burkhardt of MSRC Vulnerabilities & Mitigations Team
Root Cause Analysis
???

Signal Intelligence

Confidence
95%
EPSS 19.23%
CVSS v3.1 6.5
Mentions 0

CNA Information

Analyst Note

Auto-imported from Google Project Zero — confirmed zero-day by definition.

Threat Actors 2

The Shadow Brokers
apt_group 🇷🇺 RU
Equation Group
apt_group Sabotage and destruction 🇺🇸 US

Triage Info

Decided atMar 05, 2026