CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: May 3, 2022

CVE-2019-1214

High

EPSS 3.7%CISA KEV

Description

Microsoft Windows Common Log File System (CLFS) driver improperly handles objects in memory which can allow for privilege escalation.

3.7%

Higher than 87.8% of all CVEs

https://nvd.nist.gov/vuln/detail/CVE-2019-1214

ELEVATED

In CISA KEV

Published

Nov 3, 2021

Added to KEV

Nov 3, 2021

Remediation Due

May 3, 2022

Microsoft

Windows