Windows DHCP Client
CVE-2019-0547 — Windows DHCP Client Remote Code Execution Vulnerability
Executive Summary
A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client. An attacker who successfully exploited the vulnerability could run arbitrary code on the client machine. To exploit the vulnerability, an attacker could send specially crafted DHCP responses to a client. The security update addresses the vulnerability by correcting how Windows DHCP clients handle certain DHCP responses.
Overview
9.8
CVSS CRITICAL
Critical
MS Severity
Not Exploited
MS Exploit Status
N/A
MS Exploit Likelihood
CVSS Vector
ATTACK VECTOR
Network
ATTACK COMPLEXITY
Low
PRIVILEGES REQUIRED
None
USER INTERACTION
None
SCOPE
Unchanged
Temporal Score: 8.8
EPSS Score
0.71365
probability of exploitation in the next 30 days
0.99333 percentile - updated 2026-06-20
View on FIRST.org
Affected Products
4 affected products
| Product | KB Article | Severity | Impact | Restart Required |
|---|---|---|---|---|
| Windows 10 Version 1803 for 32-bit Systems | 4480966 (Security Update) |
Critical | Remote Code Execution | Yes |
| Windows 10 Version 1803 for ARM64-based Systems | 4480966 (Security Update) |
Critical | Remote Code Execution | Yes |
| Windows 10 Version 1803 for x64-based Systems | 4480966 (Security Update) |
Critical | Remote Code Execution | Yes |
| Windows Server, version 1803 (Server Core Installation) | 4480966 (Security Update) |
Critical | Remote Code Execution | Yes |
Patches
1 patch
| Article | Type | Restart |
|---|---|---|
4480966 |
Security Update | Yes |
Known Exploits
No known exploits have been linked for this CVE yet. When available, exploit references will be sourced from public repositories and may be unverified, incomplete, or non-functional. Always review code carefully before use in any environment.
Acknowledgments
Microsoft Windows Enterprise Security Team
References
On This Page