OnlyFm252
Patch Tuesday Archive

Patch Tuesday January 2019

Total CVEs

53

Critical

7

Important

42

Exploited

0

Publicly Disclosed

3

All CVEs this month 53

CVE Title Severity CVSS Product Exploited Disclosed
CVE-2019-0539 Chakra Scripting Engine Memory Corruption Vulnerability Critical 4.2 Microsoft Scripting Engine - -
CVE-2019-0547 Windows DHCP Client Remote Code Execution Vulnerability Critical 9.8 Windows DHCP Client - -
CVE-2019-0550 Windows Hyper-V Remote Code Execution Vulnerability Critical 7.6 Windows Hyper-V - -
CVE-2019-0551 Windows Hyper-V Remote Code Execution Vulnerability Critical 7.6 Windows Hyper-V - -
CVE-2019-0565 Microsoft Edge Memory Corruption Vulnerability Critical 4.2 Microsoft Edge - -
CVE-2019-0567 Chakra Scripting Engine Memory Corruption Vulnerability Critical 4.2 Microsoft Scripting Engine - -
CVE-2019-0568 Chakra Scripting Engine Memory Corruption Vulnerability Critical 4.2 Microsoft Scripting Engine - -
CVE-2019-0536 Windows Kernel Information Disclosure Vulnerability Important 4.7 Windows Kernel - -
CVE-2019-0537 Microsoft Visual Studio Information Disclosure Vulnerability Important - Visual Studio - -
CVE-2019-0538 Jet Database Engine Remote Code Execution Vulnerability Important 7.8 Microsoft JET Database Engine - -
CVE-2019-0541 MSHTML Engine Remote Code Execution Vulnerability Important 7.5 Internet Explorer - -
CVE-2019-0543 Microsoft Windows Elevation of Privilege Vulnerability Important 7.8 Microsoft Windows - -
CVE-2019-0545 .NET Framework Information Disclosure Vulnerability Important - .NET Framework - -
CVE-2019-0548 ASP.NET Core Denial of Service Vulnerability Important - ASP.NET - -
CVE-2019-0549 Windows Kernel Information Disclosure Vulnerability Important 4.7 Windows Kernel - -
CVE-2019-0552 Windows COM Elevation of Privilege Vulnerability Important 7 Windows COM - -
CVE-2019-0553 Windows Subsystem for Linux Information Disclosure Vulnerability Important 4.7 Windows Subsystem for Linux - -
CVE-2019-0554 Windows Kernel Information Disclosure Vulnerability Important 4.7 Windows Kernel - -
CVE-2019-0555 Microsoft XmlDocument Elevation of Privilege Vulnerability Important 7 Microsoft XML - -
CVE-2019-0556 Microsoft Office SharePoint XSS Vulnerability Important - Microsoft Office SharePoint - -
CVE-2019-0557 Microsoft Office SharePoint XSS Vulnerability Important - Microsoft Office SharePoint - -
CVE-2019-0558 Microsoft Office SharePoint XSS Vulnerability Important - Microsoft Office SharePoint - -
CVE-2019-0559 Microsoft Outlook Information Disclosure Vulnerability Important - Microsoft Office - -
CVE-2019-0560 Microsoft Office Information Disclosure Vulnerability Important - Microsoft Office - -
CVE-2019-0561 Microsoft Word Information Disclosure Vulnerability Important - Microsoft Office - -
CVE-2019-0562 Microsoft SharePoint Elevation of Privilege Vulnerability Important - Microsoft Office SharePoint - -
CVE-2019-0564 ASP.NET Core Denial of Service Vulnerability Important - ASP.NET - -
CVE-2019-0566 Microsoft Edge Elevation of Privilege Vulnerability Important 4.3 Microsoft Edge - -
CVE-2019-0569 Windows Kernel Information Disclosure Vulnerability Important 5.5 Windows Kernel - -
CVE-2019-0570 Windows Runtime Elevation of Privilege Vulnerability Important 7.8 Microsoft Windows - -
CVE-2019-0571 Windows Data Sharing Service Elevation of Privilege Vulnerability Important 7.8 Microsoft Windows - -
CVE-2019-0572 Windows Data Sharing Service Elevation of Privilege Vulnerability Important 7.8 Microsoft Windows - -
CVE-2019-0573 Windows Data Sharing Service Elevation of Privilege Vulnerability Important 7.8 Microsoft Windows - -
CVE-2019-0574 Windows Data Sharing Service Elevation of Privilege Vulnerability Important 7.8 Microsoft Windows - -
CVE-2019-0575 Jet Database Engine Remote Code Execution Vulnerability Important 7.8 Microsoft JET Database Engine - -
CVE-2019-0576 Jet Database Engine Remote Code Execution Vulnerability Important 7.8 Microsoft JET Database Engine - -
CVE-2019-0577 Jet Database Engine Remote Code Execution Vulnerability Important 7.8 Microsoft JET Database Engine - -
CVE-2019-0578 Jet Database Engine Remote Code Execution Vulnerability Important 7.8 Microsoft JET Database Engine - -
CVE-2019-0579 Jet Database Engine Remote Code Execution Vulnerability Important 7.8 Microsoft JET Database Engine - Yes
CVE-2019-0580 Jet Database Engine Remote Code Execution Vulnerability Important 7.8 Microsoft JET Database Engine - -
CVE-2019-0581 Jet Database Engine Remote Code Execution Vulnerability Important 7.8 Microsoft JET Database Engine - -
CVE-2019-0582 Jet Database Engine Remote Code Execution Vulnerability Important 7.8 Microsoft JET Database Engine - -
CVE-2019-0583 Jet Database Engine Remote Code Execution Vulnerability Important 7.8 Microsoft JET Database Engine - -
CVE-2019-0584 Jet Database Engine Remote Code Execution Vulnerability Important 7.8 Microsoft JET Database Engine - -
CVE-2019-0585 Microsoft Word Remote Code Execution Vulnerability Important - Microsoft Office - -
CVE-2019-0586 Microsoft Exchange Memory Corruption Vulnerability Important - Microsoft Exchange Server - -
CVE-2019-0588 Microsoft Exchange Information Disclosure Vulnerability Important - Microsoft Exchange Server - -
CVE-2019-0624 Skype for Business and Lync Spoofing Vulnerability Important - Skype for Business - -
CVE-2019-0646 Team Foundation Server Cross-site Scripting Vulnerability Important - Team Foundation Server - Yes
CVE-2019-0546 Visual Studio Remote Code Execution Vulnerability Moderate - Visual Studio - -
CVE-2019-0622 Skype for Android Elevation of Privilege Vulnerability Moderate - Android App - -
CVE-2019-0647 Team Foundation Server Information Disclosure Vulnerability Moderate - Team Foundation Server - Yes
ADV190001 January 2019 Adobe Flash Update Unknown - Adobe Flash Player - -

    Threat Categories 6

    Threat Category CVEs Critical
    Remote Code Execution 22 7
    Information Disclosure 12 -
    Elevation of Privilege 11 -
    Spoofing 5 -
    Denial of Service 2 -
    Unknown 1 -

    Affected Products 21

    Product CVEs Exploited
    Microsoft JET Database Engine 11 -
    Microsoft Windows 6 -
    Windows Kernel 4 -
    Microsoft Office SharePoint 4 -
    Microsoft Office 4 -
    Microsoft Scripting Engine 3 -
    Windows Hyper-V 2 -
    Microsoft Edge 2 -
    Visual Studio 2 -
    ASP.NET 2 -
    Microsoft Exchange Server 2 -
    Team Foundation Server 2 -
    Windows DHCP Client 1 -
    Internet Explorer 1 -
    .NET Framework 1 -
    Windows COM 1 -
    Windows Subsystem for Linux 1 -
    Microsoft XML 1 -
    Skype for Business 1 -
    Android App 1 -
    Adobe Flash Player 1 -