Fixed Intel

CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Apr 5, 2022

CVE-2019-1069

High
EPSS 30.5%CISA KEVRansomware
Microsoft/Task Scheduler

Description

A privilege escalation vulnerability exists in the way the Task Scheduler Service validates certain file operations.

EPSS — Exploit Probability

30.5%

Higher than 96.6% of all CVEs

Required Action

https://nvd.nist.gov/vuln/detail/CVE-2019-1069

Risk Assessment

HIGH
In CISA KEV
Ransomware

Details

Severity
High
EPSS
30.5%
CISA KEV
Yes
Ransomware
Known
Articles
0

Timeline

Published

Mar 15, 2022

Added to KEV

Mar 15, 2022

Remediation Due

Apr 5, 2022

Affected Product

Microsoft

Task Scheduler

View all Microsoft CVEs

External Links

NVD (NIST)CVE DetailsMITRE CVE