Windows Hyper-V Network Switch Improper Input Validation Vulnerability

Summary

An information disclosure vulnerability exists when the Windows Hyper-V Network Switch on a host operating system fails to properly validate input.

Credit:

The information has been provided by VictorV

The original article can be found at: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1230

 


Details

An information disclosure vulnerability exists when the Windows Hyper-V Network Switch on a host operating system fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker on a guest operating system could run a specially crafted application that could cause the Hyper-V host operating system to disclose memory information.

Vulnerable Systems:

Windows Hyper-V Network Switch 

CVE Information:

CVE-2019-1230

Disclosure Timeline:
Published Date:10/10/2019