CVE-2019-1458

ENISA EUVD: EUVD-2019-10015 ↗
Exploited in the Wild ✓ Confirmed 0-Day ★ Google Project Zero
Triaged: March 5, 2026 3 articles Published: 2019-12-10
VulnLookup ↗ NVD ↗ EUVD ↗ MITRE ↗ Advisory ↗ P0 Sheet ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-23
92.04%
probability
This CVE has a 92.04% probability of being exploited in the next 30 days.
0% Top 99.7th percentile of all CVEs 100%

CVSS v3.1

Source: VulnerabilityLookup (CIRCL)
7.8
HIGH
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2 (legacy)

7.2
HIGH
Access Vector
Local
Access Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
AV:L/AC:L/Au:N/C:C/I:C/A:C

Description

VulnerabilityLookup (CNA)
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'.

Affected Products

Microsoft
Windows
10 for 32-bit Systems 10 for x64-based Systems 10 Version 1607 for 32-bit Systems 10 Version 1607 for x64-based Systems 7 for 32-bit Systems Service Pack 1 7 for x64-based Systems Service Pack 1
Microsoft
Windows Server
2016 2016 (Core installation) 2008 for 32-bit Systems Service Pack 2 2008 for 32-bit Systems Service Pack 2 (Core installation) 2008 for Itanium-Based Systems Service Pack 2 2008 for x64-based Systems Service Pack 2

Google Project Zero

Patched
Dec. 10, 2019
Reported by
Anton Ivanov and Alexey Kulaev of Kaspersky Lab
Root Cause Analysis
https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2019/CVE-2019-1458.html

Exploits & PoC

piotrflorczyk/cve-2019-1458_POC

POC for cve-2019-1458

181 2022-01-17
rip1s/CVE-2019-1458

CVE-2019-1458 Windows LPE Exploit

135 2020-03-11
Eternit7/CVE-2019-1458
0 2021-02-19
3 repos — triés par ⭐ Rechercher sur GitHub ↗

Signal Intelligence

Confidence
95%
EPSS 92.04%
CVSS v3.1 7.8
Mentions 3
Last Seen Dec 10, 2019

CNA Information

CNA Assigner
microsoft

Analyst Note

Auto-imported from Google Project Zero — confirmed zero-day by definition.

Threat Actors 1

Turla Group
apt_group Information theft and espionage Russian Federation

Triage Info

Decided atMar 05, 2026
Published DateDec 10, 2019