How severe is CVE-2019-0720?

High severity. CVSS v3 base score is 8.0 out of 10.

Vulnerability in Microsoft Windows 10 Version 1507

CVE-2019-0720

A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run…

EPSS: 0.007 (73.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.0 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C.

Affected products

Microsoft Windows 10 Version 1507 — versions 10.0.0
Microsoft Windows 10 Version 1607 — versions 10.0.0
Microsoft Windows 10 Version 1703 — versions 10.0.0
Microsoft Windows 10 Version 1709 — versions 10.0.0
Microsoft Windows 10 Version 1803 — versions 10.0.0
Microsoft Windows 10 Version 1809 — versions 10.0.0
Microsoft Windows 7 Service Pack 1 — versions 6.1.0
Microsoft Windows 8.1 — versions 6.3.0
Microsoft Windows Server 2008 R2 Service Pack 1 — versions 6.1.0
Microsoft Windows Server 2008 R2 Service Pack 1 (Server Core Installation) — versions 6.0.0

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0720 (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-0720?: CVE-2019-0720 is a high-severity vulnerability in Microsoft Windows 10 Version 1507. CVSS score: 8.0/10. Published 2019-08-14.
How severe is CVE-2019-0720?: High severity. CVSS v3 base score is 8.0 out of 10.