CVE-2019-18194
23Vexday Risk Score
No sign of exploitation. It has a public proof of concept.
ssvc Attendepss 2.2%
from disclosure to weapon0 days
Published on NVDJan 10
1st PoCJan 10
exploitation probability
2.2%top 19% of all CVEs
observed exploitation
nono source reports it
1 public exploit(s)
TotalAV 2020 4.14.31 has a quarantine flaw that allows privilege escalation. Exploitation uses an NTFS directory junction to restore a malicious DLL from quarantine into the system32 folder.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/47897unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.